Social Engineering and phishing attacks are common these days and no one gets a clue on how to remain safe. In a social engineering attack, an attacker uses human interaction to attain info about the firm or its computer systems. The attacker behaves decently and claims to be a new employee, researcher or repair person offering credentials to support that identity. If the attacker is not able to collect info from a single source, he might contact another source within the same firm and confirms his authenticity related to the info from the initial source.
On the other hand, a phishing attack uses email or infected websites by asking personal info by posing as a reliable organization. An attacker can send email from a reputable credit card firm that requests account details, suggesting that there is an issue. When users respond with the requested info, attackers can use it to attain access to their accounts. In this situation, connecting to the Kaspersky support engineers can be of great help.
These attacks might also come from other types of firms, such as charities. Attackers take advantage of the present events and certain times of the year, like:
Natural disasters
Economic concerns
Epidemics and health scares
Major political elections
Holidays
Ways to be safe from such attacks:
Be alert of the unwanted visits, calls or email messages from individuals asking about employees or other internal info. If an unidentified person claims to be from a genuine firm, try to verify his identity directly with the organization.
Do not offer personal info about the firm, including its structure or networks, unless you are certain about the person’s identity.
It is good to not to reveal personal info in email, and do not respond to email solicitations for this info. In any case like this, contacting Kaspersky Tech Support helpdesk can be fruitful.
Do not ever send sensitive info over the Internet before checking a website’s security.
Always pay attention to the URL of a website. Infected websites might look identical to a genuine site, but the URL might use a variation in spelling or a different domain.
If there isn’t surety whether an email request is genuine, try to verify it by contacting the firm directly. Don’t use contact info offered on a site connected to the request. You just need to check previous statements for contact info. Info about known phishing attacks is also present online from groups like the Anti-Phishing Working group.
Maintain and install an Antivirus software, email filters, and firewalls to reduce some of the malicious traffic.
Take advantage of the anti-phishing features provided by the email client and web browser.
What to do if you are a victim?
If you think you have revealed some personal info about the company, report it to the reliable people within the company and also to the network administrators. They can become alert thereafter.
If you think the financial accounts have been infected, contact the financial institution as soon as possible and close any accounts that have been infected.
Immediately change all the passwords. If you have used the same passwords for every account, ensure to change them for each account.
Watch for other types of identity theft.
Report the attack to the police, and file a report with the Federal Trade Commission.
Conclusion
So, if you think you are a victim, just connect to the Kaspersky Customer Support experts without a second thought. They will do the needful with immediate effect.