Lynx MD gets caught by dummy scam email
As MD of Lynx Networks, I’m rightly concerned that, despite our layers of cybersecurity protection, one of our staff might click on a malicious link in an email.
To that end, we use KnowBe4; a service Lynx installed and manages for ourselves as well as our customers. It trains staff on cyber security issues and sends simulated phishing emails to test staff awareness on a regular basis.
I recently asked for the number of these KnowBe4 test emails to be increased to see if anyone clicked on a link that they should avoid.
A few days later I received an email apparently from a social media platform that said I had a direct message. I clicked on the link to read it and got a message saying, “Oops! You clicked on a simulated phishing test.” I’d been caught in a trap I’d laid to catch my own staff out! The message went on to say:
Remember these three ‘Rules to Stay Safe Online’
Rule Number One:
- Stop, Look, Think!
- Use that delete key.
Rule Number Two:
- Do I spot a Red Flag?
- Verify suspicious email with the sender via a different medium.
Rule Number Three:
“When in doubt, throw it out.” There are a thousand ways that internet criminals will try to scam you, and only one way to stay safe: Stay alert as YOU are the last line of defence!
It’s made me much more wary, and I’ll be more careful in the future, hopefully avoiding further embarrassment and genuine phishing attacks too.
News, Articles & Case Studies
The aim of our breakfast update is to guide you to a place where your organization is at a much lower risk from such attacks. You should leave with the basis of a strategy to get there.
Insider cyber security threats refer to actions taken by employees, contractors, or business partners who have legitimate access to an...
Vulnerability testing and penetration testing are both methods used to assess the security of an organization's systems and infrastructure, but...