It’s cybersecurity awareness month! Every October, The Erb Group recognizes cybersecurity month as an opportunity for our IT department to share its expertise and inform our employees of the importance of cyber safety. Cybersecurity awareness can prevent employees from potentially clicking into security violation scams and exposing private information. Cybersecurity in the workplace is essential for any industry sector; however, the focus of cybersecurity in trucking and logistics has taken significant precedence as many transportation businesses slowly shift to using digital infrastructures and platforms for their operations.
Cyberattacks are a growing concern, and the impact of one attack could cost you and your organization valuable resources, time, and confidentiality. In fact, according to the 2021 Cyber Defense Report, 86% of Canadian organizations experienced at least one cyberattack within 12 months. Being aware of cybersecurity best practices is significant because no organization or individual is exempt from a cyber-attack.
Throughout October, our talented IT team has been sending out a new cybersecurity tip every week to help keep our employees feel secure both on the job and at home! Here are our three top tips for keeping on top of your cyber safety this year.
Multi Factor Authentication (MFA)
Have you ever had to enter a unique code alongside your password? That’s Multi-factor identification. As the name implies, MFA is an additional method of proving you are authorized to access the account you’re attempting to access. MFA doesn’t mean your accounts are invincible; however, it does mean you will be notified if anyone else is trying to log into your account. MFA often comes in the form of a code sent through email, text or phone call and is run through third-party programs such as Google or Microsoft authentication apps.
MFA is the most important thing you can do to protect your accounts. If a website or company is hacked, your account will remain inaccessible to a hacker because they would need physical access to your phone to access the code. Even if they know your password, they will still need a unique code to log in to the account. Never give your MFA codes to anyone!
We know that fishing on a boat is fun, but when it comes to phishing online, if it sounds too good to be true, then it likely is. If you have a computer or cell phone, you’ve probably seen a phishing attempt, whether you knew it or not. Phishing is a type of social engineering that tries to trick you into giving out sensitive information, such as passwords or downloading malicious software. Phishing can come from an email, phone call or text message. Never give any personal information to an unknown contact!
Cybersecurity experts predict that an estimated 98 percent of cyber-attacks use social engineering methods, which involve using fear and uncertainty to manipulate a user to reveal information. You can spot a phishing scheme simply by analyzing what the message is asking you to do. For example, these asks could sound like, “You’ve won a trip; please enter your information” or “Your account will be locked unless…” Suppose you find a phishing scheme in the workplace, report it to your IT department immediately and delete the message. If you’re at home, delete, block and report the sender of the message. Have you already been baited by a scammer? Change your password for the affected accounts and immediately run an antivirus scan to avoid any more pop-ups or slowdowns on your device.
Fake Chrome Extension
Google Chrome is one of the most popular and trusted internet browsers today, with more than six in ten people using Chrome to browse the internet. As users provide more and more trust in the platform, it creates more opportunities for scammers to develop fake malicious software and present themselves to users as if they are the brand. Then, they target the software toward someone who isn’t equipped with the tools needed to sight a cyber threat.
Scammers have developed a fake chrome extension called “Internet Download Manager” that has been in store for years and could hurt your device without you even knowing. Before you download any “chrome extensions” or updates to add to your browser, make sure you research or ask your IT department if you are unsure. Additionally, when you click on a new link, be cautious of the following:
- A new tab opening
- Unrelated websites
- Pop-up ads asking you to download additional programs and files
As we become a more paperless organization, we are grateful to our team of IT professionals for safeguarding our systems and working hard to create resources and tools to help our employees become more conscious of online threats, preventions, and protocols. It also establishes an excellent learning experience from significant awareness months, like Cybersecurity month!
“I think it’s crucial to acknowledge Cybersecurity month, as it reinforces our commitment to keep our employees aware of cyber safety and to constantly be on the lookout for cyber threats, especially in email, which our employees work with every day”, said Darryn Nafziger, our VP of Information Technology (IT).
With the rise of the digital era, Cyber safety continues to be a growing threat around the globe and is advancing at a rapid pace each year. As cyber criminals become more creative, the number of breaches continues to rise and threatens those vulnerable to attacks. Cybersecurity is a team sport, from those who set cyber strategies, policies and frameworks to the individuals putting them into action. Cyber security is achieved through everyone’s participation. This Halloween, follow these three tips and tricks to help yourself, your workplace, and your friends stay calm and combat cybercrime one click at a time.
To read this blog in French, please click here.