In the days of global automation, social engineering (a method of gaining access to confidential information based on the peculiarities of people’s psychology) is gaining momentum.
The main purpose of social engineering is to get access to passwords, banking data and other secure systems.
Let’s analyze the most common types of threats.
Phishing emails:
- Persuade you to immediately perform something or maintain personal information.
- No sender specified, no return contact details.
- Impersonal appeal to the user.
- You may receive letters with stories to which you have nothing to do – outstanding loan, litigation, inheritance. In the case of a letter from an official body or bank, search the Internet for contact details, call or go to find out all the details. In addition, in most cases, the original letter from the court or bank comes by regular mail in paper form.
- Suspicious type of links when hovering the cursor: the link specified in the letter does not coincide with the one that will be followed.
- Sender – well-known company. Make sure that the address of the real company really matches the sender’s address. Scammers pose as official representatives, but write not from corporate addresses, but from common mail domains: mail.ru, gmail.com, etc.
- Attached documents with strange names, numbers and extensions.
- Disguised links as images, QR codes, buttons, can also be unsafe links from scammers.
Shalabayeva Makpal Muratovna, our senior lecturer, graduate of the Bolashak program (National University of Singapore), specializes in cybersecurity, digitalization of business processes, cloud technologies, data visualization, tells about cybersecurity and much more in our seminars.