As we gear up for the holiday season, it’s essential to be aware of the increased cybersecurity risks that come with the festivities. Cyber threat actors are well aware that our lives become busier during this time, diverting attention away from work-related tasks and communications. Exploiting this distraction, they capitalize on the decreased focus, planning, and policy reviews. While cybersecurity experts consistently caution us about this threat, the allure of holiday activities like feasting, family time, and tempting shopping deals often takes precedence.

 

KEY CONSIDERATIONS TO STAY CYBER-SAFE OVER THE THANKSGIVING WEEKEND

 

Beware of Phishing Emails and Smishing Texts

Phishing attacks tend to peak during holidays, spiking by 52% in December, particularly around Thanksgiving, Black Friday, Christmas, and New Year. Amidst the influx of emails and texts, both legitimate and malicious, it’s crucial to exercise caution. Our advice, slow down! Avoid taking hasty actions like opening, clicking, or forwarding emails or texts when distracted, even if you’re enjoying a slice of pie during the game. Remember, “Slow is smooth, smooth is fast.”

Signs of phishing or smishing include:

– Altered email addresses with extra characters or misspellings.

– Misspellings or poor grammar in the subject line or body.

– Generic addressing, such as “Mr.” or “Dear Customer.”

– Messages inducing urgency.

– Promises of refunds, coupons, or freebies.

 

Watch Out for Fake Sites

Fake sites, resembling legitimate ones, are a common tactic used by cybercriminals. These sites imitate the appearance of well-known brands, including logos, branding, and content. Be cautious when clicking links from emails, especially those urging immediate action.

Signs of a fake site include:

– Incorrect URLs.

– Lack of encryption (HTTP instead of HTTPS).

– Typos and misspelled words.

– Low-resolution images or outdated logos.

 

Avoid Using Work Emails for Personal Activities

Using your business email for personal activities can make you more susceptible to cyber threats. Cybercriminals can profile you more easily, leading to targeted spear-phishing attacks. Additionally, tying your business email to various online resources increases the potential for phishing and malware in your inbox.

 

Strengthen Password Security

A strong password is a fundamental aspect of cybersecurity.

According to NIST guidelines:

– Opt for a strict eight-character minimum length.

– Prioritize length over complexity for enhanced security.

– Avoid changing passwords periodically.

– Exclude password hints.

– Implement multi-factor authentication (MFA) for added protection.

 

Exercise Caution on Public Wi-Fi

Public Wi-Fi poses numerous risks, including malware, network snooping, and credential vulnerability.

Stay protected by:

– Using a VPN for a secure connection.

– Installing anti-malware and Endpoint Detection & Response (EDR) on devices.

– Turning off Wi-Fi auto-connect.

– Checking for HTTPS in website URLs.

– Providing employees with security awareness training.

 

REMAINING ALERT TO CYBERSECURITY THREATS IS OF UTMOST IMPORTANCE

Even during a holiday weekend, maintaining vigilance against cybersecurity threats is crucial. If you have questions or need assistance with implementing cybersecurity tools, we are just a phone call away. Reach out to us to review your security plan and ensure a safe and secure holiday season.