Email with supposed offers is the most used vector by cybercriminals
On November 29, Black Friday will be held , a date marked for years in the calendar of shops and customers with sales and succulent offers. Online store traffic will once again reach its highest figures for the year and customers will search the Internet and in their emails for the best deals. But that ‘a priori’ attractive occasion can hide a fraud that causes us much more than a passing disgust. Cyber criminals can anticipate sending emails, under the identity of commercial firms, to try to deceive the consumer with fraudulent emails . A risk that increases exponentially on this day.
According to Proofpoint, one of the leading cybersecurity and regulatory compliance companies, 35% of the top 20 online businesses operating in Spain have not implemented any DMARC security protocol, “so they are at risk of phishing” by of cybercriminals in email frauds. Fernando Anaya, director of business development for Proofpoint for Spain and Portugal, says that the most worrying thing is that only 15% of companies have implemented the most strict and recommended level of DMARC protection, which blocks fraudulent emails before they arrive to user mailboxes.
“remains the key objective,” according to Anaya. His company has analyzed eight countries of the EMEA, that is to say in Europe, the Middle East and Africa, in what refers to those that have their businesses most exposed to mail fraud. Spain is in fifth place , in a ranking led by Germany and Sweden.
So, in addition to recommending companies that use the DMARC protocol to increase cybersecurity, Anaya offers recommendations to prevent fraud on Black Friday , tips that can help us at any time of the year and that go through the following recommendations:
– Use robust passwords and avoid using free or free access WiFi networks because they are not secure.
– Special care with websites similar to the official ones , because cybercriminals create pages imitating known brands where to sell counterfeit, non-existent products that are infected with malware and used to steal money or credentials .
– Attentive to phishing attacks by email or those produced by SMS , known as smishing.
– Do not click on the links , but go directly to the page of the advertised offer by typing the web address in your browser.
– Fraudulent ads, websites and apps can be difficult to identify, so it is recommended when you download a new application or visit an unusual website, spend time reading online reviews about it or any user comments.