- Be Aware of the risks & spread the information within your company
- Be careful when using Social Media. By sharing information of where you work & what your responsibilities are – you increase the risks of becoming a target
- Avoid sharing sensitive information on the company’s hierarchy (especially on your website).
- Never open suspicious links or attachments received by email. Never check personal email on company systems
- If you do receive a suspicious email, contact your IT department / Support. They will appreciate the question rather than a ransomware infection
Always carefully check email addresses when dealing with sensitive information / bank transfers. Fraudsters often use copycat email / domain names where one character differs from the legitimate email address.
- If you do receive a call/email alerting you of a security breach, do not provide information right away or proceed with instructions. Always start by calling the person back using a phone number found in your own records or on the company’s official website.
- If a supplier informs you of a change in payment details, always contact them to confirm the new information. Keep in mind that the email / phone number provided on the invoice might have been modified
- Strictly apply the security procedures in place for all payments. Do not skip any steps and do not give in to pressure