We have had several clients contact us this past week regarding a bogus Dropbox email that looks like this:
When one user clicked on the link in the email, it redirected them to a site that looked valid.
This is where you should stop and ask yourself the following:
• Do I know the sender?
• Am I expecting a file from them? Or did they possibly just get hacked?
• Is the site secure? Does it have HTTPs in the URL?
• Does the page look valid? Are there any logos or images that don’t look right?
• How is the quality of the content? Does it sound like it may not have been written by a native English speaker?
It’s much easier to avoid being hacked than it is to clean up a network of encrypted files, or to restore from backups files that have been deleted by an attacker.
Remember the most important rule: Don’t Know? Don’t Click!
Here Are the Top 6 Ways to Keep Your Computer Secure:
1. Keep your antivirus/malware protection up to date.
If you make a mistake and click a link you shouldn’t, the right malware/antivirus protection could make all the difference. Whichever program you choose to protect your computer, make sure it’s the most current version available.
2. Never click on hyperlinks/email attachments from someone you don’t know.
And even if you do know them, scan the content for anything suspicious before clicking–their account may have been hacked without their knowledge.
3. Use multiple passwords.
In addition to using a variety of passwords, they should also not contain names, birthdays, or other personal information that can be easily determined by others.
4. Scan USBs for viruses before putting them in your computer.
USB devices run with administrator privileges, allowing them to bypass the usual security measures in place to prevent viruses.
5. When in doubt, ask someone you trust.
This doesn’t necessarily have to be your IT provider, although it could be. If you’re unsure whether something is safe to do, ask a tech-savvy neighbor or relative about the email, site, or link BEFORE entering your information.
6. Be mindful when visiting websites.
Many spammer scammers use valid looking icons and pages to trick users into providing credentials. If an administrative user clicks on a link, provides credentials, then the attacker could have full access to your network and resources.
This is only the tip of the scamming iceberg. For more information, please check out our 3 part series on spyware, phishing, and you.
Part 1 | Part 2 | Part 3
Concerned about your network security? Contact Coulson Technologies for a network assessment.