Video calling, messaging and meeting platforms, file sharing – terms you’ve probably gotten very familiar with, and are important for an effective hybrid work environment.
Bad guys recognize this. They may offer fake collaboration apps or tools that promise to make your work life easier.
HOW IT WORKS
You may get an email containing a link to software that promises to help make you more productive from home. It may offer a new way to connect with co-workers remotely.
Or an email may be disguised as an official communication from your organization's IT department. It may share a "required" update to services or software.
If this sounds familiar, you’re right. These are classic phishing attempts.
In some cases, the fraudulent apps may do what they promise. But they also may be designed to capture what you type, or record audio and video. The fraudulent links may also install malicious software giving the fraudster access to information on your computer or your company's network.
What To Do
- Pause. Be suspicious and carefully review the message - especially the email address of the sender. Take a close look at the part after the @ symbol. Bad guys can use free email accounts to do bad things. If it appears to come from a legitimate business or organization, make sure it is spelled correctly. Companies do not misspell their own name.
- Ask yourself if you know the person sending the message or if you are expecting any communications from this person. Only open emails and attachments from senders you know and trust.
- Don’t click any links, open an attachment, or respond to the message if you do not trust it.
- Contact your company's IT department through known methods, such as an intranet site, and ask if the email is legitimate. They'll be able to tell you if it is safe.
More Information
See our tips for identifying a phishing email here and learn what to do if a potential fraudster reaches out to you here.
Working from home? Check out these tips on how to work more productively and securely at home.