Cyber criminals have been sending phishing emails claiming to be “GDPR compliance specialists” informing people that their businesses’ current email system doesn’t meet the GDPR’s compliance standards.
Cleverly, the criminals then offer a solution to this non-compliance and all you’d have to do is click the link, fill out a HTML form or hand over your email login credentials, enabling them to make the “necessary changes” to your email system.
Due to the complicated nature of the GDPR and the fines for non-compliance, it makes the threat of your email system being non-compliant that much more daunting and unfortunately, makes it more likely for a person to fall for the scam.
So, what is it you should look out for in order to identify a phishing email?
- Small mistakes in language, grammar, spelling and punctuation.
- The email address isn’t from someone you know (generic)
- Or, the email address is one you recognise (a colleague?) but doesn’t end with .co.uk
- When you hover over the hyperlink, the URL doesn’t match the link in the email.
- Colour choices or fonts which aren’t the regular choices.
What would we recommend you do? Implementing Security Awareness training can provide you with dedicated training courses on cyber security, phishing and the warning signs to look out for.
If this is something you are interested for your business? Get in touch today on 0114 223 8000.