Email security has been a problem for decades and rather than resolving the issues in many ways it has only gotten worse.
According to the State of Email Security report by Mimecast, 50 per cent of organizations around the world saw phishing attacks increase last year. Respondents also indicated that 20 per cent of C-level executives sent sensitive data via email in response to phishing attacks.
While phishing attacks appear to be the trend among cyber criminals these days, email users still need to be on guard against malicious spam, ransomware and other email scams.
Indeed, just when you think you have a handle on one email scam, hackers change tactics and you have to adjust your defenses, notes security experts like Vancouver’s Thierry Levasseur.
One of the best ways that a company can guard employees against cyberattacks hitting their inboxes is to have a company policy in place.
Here are some of the most basic ways that can secure employee emails and protect your enterprise against fraudulent emails.
- Install an email filter to remove spam before it reaches your employee’s inbox.
- Be vigilant against spear phishing attacks. These are the emails that target one of your employees and can be difficult to determine its validity. Some of the ways to protect your company are to configure a sender policy framework and a domain-based message authentication, reporting and conformance. These will protect your business email accounts from phishing and other spam attacks.
- Develop a backup system. A good system where you can backup data is the best way to secure accounts from ransomware.
- Train your employees to be alert. Reduce the chances that cyber attacks against your company will be successful by teaching your staff what to look out for and how to respond if they suspect an email attack. This includes going over the basics including, don’t open attachments from a sender you don’t know and don’t click on links from suspicious senders.
- Put policies in place. Employees should know who to contact if they suspect their account has been compromised. They should also be aware of what information they can share.
- Be cautious with BYOD practices. While allowing employees to conduct business on their own devices has its upside, there is a higher risk of a security breach because companies are not able to exert control over the apps on the device. Wise companies will put a document sharing policy in place that restricts who can share via mobile devices.
- Encourage smart password habits. Employees should be changing their passwords periodically, selecting ones that will be difficult to guess, and use separate passwords for different apps or accounts.
The risks of emails will never truly go away nor will an organization’s dependence on the communication tool. Thus, it is best to be equipped for the inevitable. By securing your system, training your employees in some best practices and having good email security policies in place you can reduce the risk for your company.