Cyber threats are on the rise and will likely hit $6 trillion annually in 2021. Among the most worrying types of cyber-attacks is email phishing. Kaspersky reports that the most popular form of malicious email attachments are (.zip) and (.jar), where (.exe) extension is the most popular one at 19.5% of the 37% of all malicious attachments sent through email.
The reports also show that hackers send over 6.4 billion fake emails every day. Such reasons show why so many people may fall victim to phishing attacks.
Unfortunately, there is no single cybersecurity solution that can help to avert all phishing attacks. Furthermore, they are all tailored, and it is the craft of a hacker who will use their knowledge to target your company.
The best way a company can prevent such attacks is by using a tiered security approach to avoid any phishing or reduce the impact of such attacks on the business whenever they occur. The multilayer approach always includes employee awareness with in-depth training on how to identify such threats. After all, employees are the last line of defense against any attack in your company.
There are various methods you can use to detect phishing on any client’s email. The best way to recognize phishing emails is by examining the hypertext links.
Most links have the destination URL showing on a hover pop-up window placed near the hyperlink. Check if the links are similar to what you have in the email. Also, be careful before clicking on any link with strange characters in between them. Sometimes these malicious links may also have abbreviations.
You can do the same on mobile devices by hovering the mouse on the hyperlink to view the destination URL. The URL materializes into a pop-up window, and you can view it in detail.
When working on web pages, you can view the URL details in the bottom-left corner of your browser window as you hover above the anchor text.
Traditionally, most employees were not aware of the steps to take on receiving a suspicious email. They had to consult the IT department or delete it. However, it is sometimes impossible to separate phishing emails from real emails since they can sound too true.
Luckily, KnowBe4’s Phish Alert button is here to enable users to have an easy and safe way to forward all email threats to their security team for analysis and deletion of such emails from the company’s email systems. It removes emails from the users’ inboxes and prevents any future exposures with just a click.
Once you install the Phish Alert Button (PAB) in your mail clients, you can use it for Outlook in Microsoft 365. The tool works to ensure your organization is always safe from any malicious phishing emails. Here are the ways to use it.
Using Phish Alert Button for Outlook
When you receive any malicious email that you feel is potentially dangerous, click on the PAB. The action will automatically delete the email from your inbox and forward it directly to a designated contact within the organization for analysis.
Therefore, it would be best to use it only when you are sure the mail you receive is of malicious intent. Avoid using it for spam or marketing emails that don’t have any ill intentions. You can avoid spam emails by deleting them or blocking the sender.
Here are the steps for using the PAB on outlook:
Step 1: After installation, the PAB add-in appears on the upright conference of Outlook client
Step 2: Report an email by clicking on the Phish Alert button after opening the email
Step 3: Click Yes on the next prompt window asking if you want to report the phishing email.
Also, the PAB add-in always appears on every open email on a tab, as shown below:
Here you can use it by:
Using Phish Alert Button for Microsoft 365
By clicking on the PAB on Microsoft 365, you also delete the email automatically from your inbox. The operation also sends the email to a contact within the organization to determine the threat of the email. The use of PAB varies according to the device or email clients you may be using. However, it always sends the messages as required when you follow the procedures for doing so.
Here are the steps to using Microsoft 365:
After installing the PAB, you will get the add-in installed in your email clients by opening the drop-down menu of an open email address. Depending on the email clients, it always appears as three dots in the up-right corner. To report the email, use the steps below:
Step 1: Click on the PAB icon on the drop-down menu
Step 2: Click on the Phish Alert that appears on the sidebar prompt to report the email
Step 3: You will receive a congratulatory message showing if the email was simulated or malicious.
Avoiding phishing scams is possible with PAB. However, you have to ensure all the employees learn and know how to spot phishing emails to report them immediately if they identify any threats.
My philosophy when starting OTT was I wanted to create a place that I would want to work at (fun and friendly.) Where there was no corporate politics and we could just do our job fixing things and helping people. We can help people with their technology and not be arrogant or condescending to people. We can actually make a difference in peoples lives and not just say it but do it.