- Home
- Case Studies
- Phishing Example
Phishing email catches company out by turning on the charm
Phishing emails are the most common of all the cybercrime threats out there
Based in the South of England, our company is at the forefront within their marketplace. Part of their success comes from the fact the company is a friendly place to work. Everyone is dedicated to their role within the organisation.
Phishing emails are the most common of all the cybercrime threats out there. They rely solely on deception; designed to trick a person into disclosing valuable information or money or both.
“Our company received an email that led a member of the team to believe that the person sending the email was a Director of the company, so the content of the email was not challenged”.
83% of businesses in the UK receive phishing emails. 27% (Gov.uk) of those emails will be ‘impersonation attacks’ that is someone from outside the organisation impersonating a person within the organisation.
A fake email was sent to the company requesting that an invoice be paid, the bank details, however, had been changed, so that the criminals account was paid, and not the real customer.
What happened to them could happen to anyone.
The Challenge
A team member was tricked by an email from an outside source. It appeared to have been sent in by one of the company’s management team. The fake “Director” drew the staff member into the conversation via email; rather than going straight to ‘can you send me money’. The cybercriminal played on the staff members’ loyalty to the company, before asking them to send money to their criminal bank details.
83% of businesses in the UK receive phishing emails. 27% (gov.uk) of those emails will be ‘impersonation attacks’!
The Solution
- Setting out a multi-layered plan to improve the company’s defences against such attacks in the future
- Staff Training – How to spot the work of cybercriminals
- Internal changes, like checking the validation of payments
- Better Anti-Spam & phishing protection
- CNC Complete Security Protection Standard
- MFA installed
- Change of passwords systemwide
- Improved working procedures with emails and logins Creating zero-trust initiatives across the whole company, helping with the cultural shift for successful implantation
- Set up reporting process for suspicious emails
“It could have been worse. Luckily it wasn’t. We could have done without the experience. Having said that, we are now in a much better position, we have installed a full security package to wrap around the company, and it’s brought about a much–needed change in how each member of the team looks at protecting the company. Thank you, CNC for sorting for us“
IT Manager
The Benefits
CNC offers an end-to-end cyber security consultation and implementation service. Call us now on 01273 384100 on how we can protect your business
Cybersecurity strategies
Building a zero-trust network within a company is one of the most effective cybersecurity strategies available to an organisation. Trusting nothing without the proper authorisation is essential when it comes to doing digital business.
Safe IT environment
It has been quite a departure for the company, to create such an agnostic IT atmosphere, and to enshroud the company’s network, which was culturally different.
Company wide solutions
With the whole company and its IT working together, they will effectively stop anything like this from happening again.
Services
See what the fuss is about and have a look through our comprehensive list of services.
- Outsourced IT Solutions
- Business Broadband
- Backup & Disaster Recovery
- IT Infrastructure Consultancy
- IT Hardware & Software Suppliers
- IT & Cyber Security
- Switching IT Support Partners
- Endpoint Protection
- Cloud & Hosting
- Cyber Security Training
- Patch Management
- Offsite Data Backup
- Apple Mac Support
- Bespoke Software Design
- Email Archiving
- Remote Working
- Microsoft 365 Solutions
- Microsoft Azure Consultancy