One of the most common cyber-attacks, phishing operates through emails which are often convincing and appear to come from legitimate senders. These messages entice their targets to click on links or attachments which, in turn, facilitate theft or fraud.

What is phishing?

Phishing uses scam emails to convince users to click on a malicious attachment or link. Emails may create a sense of fear, urgency or opportunity to encourage recipients to click on a link or open an attachment that then infects their machine with a virus or malware. This then allows criminals to steal information or money, disrupt business operations and/or destroy data.

While many fraudsters act randomly, some target specific groups of employees or customers. This is called spear phishing. One example is CEO fraud, where criminals impersonate senior executives and instruct colleagues to transfer money to them.

Another tactic is payment diversion fraud. Criminals will send an email claiming to be from a supplier. It says its bank details have changed so funds should be transferred to another account instead.

Don't reply to these emails.

Risks to your business:

  • Data theft
  • Financial loss
  • Fraudulent internet banking redirection

How to help keep your business safe:

  • Raise awareness of the potential impact of Phishing within your organisation and implement a policy for reporting suspected cases.
  • Never share financial or company information with people you don't know.
  • Don't be rushed into making a quick decision.
  • Never click on links in emails, or open or download attachments, unless you are sure they are safe.
  • Be careful about the information you share on social media as this can provide fraudsters with many small pieces of information that make a bigger picture.
  • Forward any suspicious emails to [email protected]

If you’re suspicious about an email you’ve received purporting to be from DSBC, please call your DSBC representative for further verification.