THANK YOU FOR SUBSCRIBING
A new phishing scam is rising within the business world, threatening to reveal confidential information. Now they are targeting corporate employees by mimicking performance appraisals.
FREMONT, CA: A new phishing scam is rising within the business world, threatening to reveal confidential information of those who fall prey to it, as well as costing businesses a lot of money. Potential victims receive an email from the company's HR department demanding that they complete an assessment process. In fact, the user's information, including company passwords, is sent directly to the scammer. A company's bottom line could suffer as a result of the knock-on impact. We look at how to spot a scam and how to stop it.
Let us look at some tips to avoid HR appraisal scams:
Check a link before clicking on it – One should be cautious if they are asked to click on a link. Employees can hover the mouse over the link and look at the URL. Does it appear to be legitimate? Is it one they are familiar with? If it is not, then it is better not to click on it and notify their IT department.
Employees should make sure the email address is right – One should double-check the source of the email. Not only the sender's name, which is simple to forge but the email address itself. Has it come from inside the organization?
Refrain from taking a step ahead too fast – Many scams entice people to make a poor decision by putting pressure on us to act immediately. In the case of this con, most workers may want to be seen filling out an assessment form quickly, and they may believe it is related to a pay raise, giving them yet another excuse to complete it as soon as possible. Employees must not dive right in.
Password manager – Password managers remember all of one's login details, saving them the trouble of having to remember several passwords at the same time. There are two positive aspects of this. One should not use the same passwords for several sites, leaving them all vulnerable, and the password manager will not auto-fill the fields when a phisher tries to get them to log into a suspect site. This should raise red flags.
Email Scam is intentional deception for either personal gain or to break another individual using email.
If the HR Appraisal email is fake, it's poorly written, it includes suspicious attachments or links, and perhaps the message creates a way of urgency.
A phishing email is shipped from a public domain; the name is misspelled, the email is poorly written, it includes suspicious attachments or links.
1. Employees can hang the mouse over the link and appearance at the URL. Does it appear to be legitimate? Is it one they're familiar with? If it's not, it's better not to click thereon and notify their IT department.
2. One should double-check the origin of the email. Has it come from inside the enterprise.
3.Think twice before clicking the links. Is that this legitimate or not?