Professional Documents
Culture Documents
IQ Poster Security Awareness Series
IQ Poster Security Awareness Series
IQ Poster Security Awareness Series
Clean Inbox
14.5 billion spam messages are sent every day in the U.S.
2.5%
That’s 45%
36%
Advertising Adult-Related
of all emails sent. 31.7%
CLOUD FI LE S H A R I N G
DOCUS I G N
FA KE I N V OI CE
DELI V E R Y N OTI FI CA TI ON
• Appears to come from a popular delivery service (FedEx, UPS, etc.) or online
retailer and includes a delivery notification with a malicious link or attachment
• TIP: Do not click links or open attachments in unexpected delivery notifications.
Instead, visit the delivery service's official website and enter the tracking
information, or call the delivery service's official phone number.
T AX SCA M
• Appears to come from a government tax revenue agency (e.g., IRS in the U.S.)
• Claims you are delinquent on your taxes and provides a means to fix the issue before
additional fines or legal actions are pursued
• TIP: Never share personal or financial information via email. Only use official
communication channels to contact revenue agencies.
SHARED TRAITS
Unsolicited
You didn’t ask for the email
Harmful
Both either attempt to steal your information or waste your time
Illegitimate
Use techniques like spoofing to make it to your inbox
© 2019 Infosec. All rights reserved.
HOW T O R EC O G N I Z E A
MALICIOUS ATTACHMENT
You received an email with an attachment. Do you download it?
Follow these steps to make a safe decision.
READ WARNINGS
»» If your email service or antivirus software warned the attachment is dangerous, DO NOT DOWNLOAD!
»» Some hackers will "warn" you that you should ignore such alerts. This is a trick!
NEVER IGNORE MALWARE ALERTS
EXAMINE MESSAGE
Take a look at the file extension (the part that follows the dot). Be suspicious of the following extensions:
.EXE
»» DO NOT DOWNLOAD! This is an executable file
»» Most email clients block .EXE attachments
.ZIP, .7z, .RAR and other archived files
»» Archiving is a common way to hide malware from antivirus
»» Be extra suspicious of password-protected archives
DOCM, XLSM, PPTM
»» These documents contain MACROS, or scripts hackers often use to run malicious code
UNKNOWN or MISSING EXTENSIONS
»» If you don't recognize the extension DO NOT TRY OPENING THE FILE!
USE CAUTION
»» Even if a file is a simple DOC or PDF document, think twice before opening it
»» If you can, contact the sender using an alternative channel (email or IM) to verify
»» Use your email client Preview feature before downloading
»» Make sure that all software you use for viewing documents has the latest
security patches installed
Jane Doe
to you
2
from: JaneDoe@gmail.com
reply-to: JoePhish263@gma
JULY
0000
10
00
0
0000
101
0010
0101 3 4
Requests for payment at
Vendor payment requests with new routing the end of the day, or before
numbers and/or account numbers weekends and/or holidays
5
6 MovieFLix
<FlixMove_@gmail.com>
to you
Please update your payment
method immediately.
Click Here
7 8
$$$
???
Requests for payment
without justification Requests for payment to
a personal account