Everyone knows what phishing emails are and how to spot them, right? Well, it might be partly true. I’m sure everyone’s seen the really obvious ones, the ones that are laughably bad, but what about the sophisticated ones, the ones that use real people’s names, real logos and perhaps even have some genuine links in them?

There’s a good quiz here from McAfee which will help you find out how good you are.

But you may not realise that you’ve fallen for a scam. It was just over a year ago when the news that Sony Entertainment had been hacked came out. Almost more frightening is that the criminals had had access to Sony’s network for about a year – no one knew they were there. It was only revealed later that the hackers had used spearing phishing emails to get in.

Cybercrime is constantly evolving and the criminals are adapting and changing their tactics. We often seem to be playing catch up with this moving target. As with other forms of attack, we need to be ever more vigilant and to report anything suspicious. In order to do that, we need to hone our skills in recognising what is suspicious.

Elearning can be really effective for this. It doesn’t have to be through an LMS with logins, tracking, reports and so on. It can be a short, five minute video embedded on an intranet page, or a link sent out in an email. A little and often approach which doesn’t see topics like information security as a once a year activity, and recognises that things such as phishing emails are a threat to us in our personal lives as well as at work.

This is our latest video on spotting phishing emails, because it’s not the ones you spot that are the problem, it’s the ones you don’t.

If you’d like to pass this video on to a friend or family, please email them this link: https://youtu.be/U7tbJVSInvo