“On average, 3.5 million emails pass through an SME every month, 50% of which are spam and, among them, phishing attempts.
Pirate emails have doubled since the health crisis, ”warns Thomas Kerjean, Managing Director of Mailinblack, a company based in Marseille (Bouches-du-Rhône).
"A third of employees who work from home are not equipped or trained to face attacks," said this former Microsoft, winner, on February 18, of the Grand Défi Cybersecurity of the government.
In times of crisis, many hackers take advantage of the vulnerability of equipment to infiltrate servers.
“Good education is better than good software.
In 9 times out of 10, the problem comes from a lack of vigilance on the part of employees, ”recalls the boss of Mailingblack.
To protect your business, remember to save your important data on reliable hard drives or the cloud.
The threat of ransom demands
You can also educate your employees with simple messages, primarily against phishing.
“The hacker deceives you by sending you a familiar email like:
Change your password for Office 365. If you click, you are dead,
” explains Thomas Kerjean.
The solution ?
“Never respond to this kind of unknown email.
"
Also remember to change passwords regularly and secure computers with the best antiviral software and virtual private networks, such as NordVPN, Surfshark, PrivateVPN, ProtonVPN, ExpressVPN ...
Another danger is that of ransom demands.
“You receive an e-mail with an attachment, you click and it's too late,” explains Thomas Kerjean.
All your IT is blocked and you are being asked to pay to regain your freedom.
"If this happens," the employee must immediately disconnect his computer and call the IT department of his company. "
READ ALSO>
How Emmanuel Macron wants to strengthen the national strategy against cyberattacks
To ensure that you understand the instructions, you can also opt for testing.
"Ask your IT department to send mock attacks," says the boss of Mailingblack.
If the employee falls into the trap, send him an instruction manual so as not to be fooled anymore, it is very effective.
This is called the phishing coach.
We are working with the CNRS to develop this pedagogy.
"