Expanded Definition: Phishing
What is phishing?
With so many cybersecurity tools available today, humans are often the weakest point in an organization’s cybersecurity posture. We’re curious creatures, and it’s often tempting to open that mysterious email, click that link, or download that attachment. And all of these temptations are parts of phishing.
If you’re looking for a phishing definition, it’s straightforward: Phishing is a form of social engineering where threat actors try to trick users into an action that compromises their account, device, or network. They do this by posing as a trusted source. Like the name implies, these threat actors are fishing for someone who will share details that can be exploited for financial gain—and they often catch a bite.
In fact, according to the 2020 Verizon Data Breach Investigations Report (DBIR), 22% of attacks were perpetrated via social methods, and 96% of all social attacks were delivered through email.
Oftentimes, phishing takes the form of emails that:
- Appear to come from an important organization, such as a service or software provider
- Look like they come from a trusted colleague or employee
These emails may ask the user to do something, including:
- Sending sensitive information over email
- Wiring money or sending payment somewhere
- Clicking a link to reset a password
- Requesting personal information or other credentials
- Downloading a file (which can contain ransomware or other malware)
Phishing poses a significant risk to organizations of all sizes; from big organizations to small to mid-sized businesses (SMBs), any individual, company, or industry can fall prey to a phishing attempt.
The MSP role in stopping phishing
Even with great training, firewalls, antivirus software, and email filtering, phishing presents an ongoing concern for organizations of all sizes. Social engineering attacks such as phishing and its cousin smishing (phishing via SMS / text messages) continue to be common forms of attack because they are effective.
MSPs can help clients defend against phishing in several ways.
1. Provide tools to catch bad emails and prevent damage
One of the best ways to prevent an end user from engaging with a phishing email is to prevent them from ever receiving it in the first place. Strong spam and email filtering tools can help block many phishing emails.
In the event that a phishing email breaks through and a cybersecurity incident occurs, MSPs can help organizations by catching the problem quickly (see point number three below) and addressing the problem with strong anti-malware software. By moving quickly, MSPs can reduce the impact of possible malware, such as viruses or ransomware.
2. Offer cybersecurity training to clients
When bad emails do slip through filters, ideally the end user will know better than to respond, share information, or download an attachment. The only way they can learn that, however, is with training.
With headlines about cybersecurity breaches, you’d be surprised how many end users still ask: “what is phishing, anyway?” MSPs can help their clients prevent risky behaviors by offering cybersecurity training to employees.
For example, a cybersecurity training session could include:
- A phishing definition, information on phishing emails, and what to look for
- How to securely manage passwords and other account information
- Caution in web browsing and email usage, especially on mobile devices
- Best practices for keeping their physical laptops, desktops, or mobile devices secure
A little education can go a long way when it comes to phishing. With the right awareness, end users may think twice before emailing a password, sharing a sensitive document, entering credentials into an online form, or downloading a potentially dangerous file.
3. Monitor every endpoint, all the time
Phishing is a widespread phenomenon, so it’s possible for an incident to occur even with great cybersecurity tools and training. That’s why an around-the-clock, robust endpoint management program is crucial to protecting clients from not only phishing attempts, but from a range of other cybersecurity threats as well.
MSPs should use a remote monitoring and management (RMM) tool to keep an eye on every endpoint, all the time. With ongoing visibility into clients’ systems, MSPs can keep an eye out for any unusual activity, reset passwords as needed, and investigate unauthorized programs or suspicious activity.
Did you know?
In 2020, attackers used email in 96% of social attacks.
Do your clients know their risks? A cybersecurity analysis can reveal areas of risk—such as employee education around phishing—and offer an opportunity to educate clients on how they can improve their cybersecurity posture.
Chances are, your SMB clients may not fully understand their risks and exposures. Use this 30-item checklist to start the conversation around cybersecurity, help them understand the cybersecurity landscape, and assess their security posture.
If you want to expand your offerings to include cybersecurity support, take a look at our MSP+ framework and playbooks. This starter kit includes information on where to start, how to expand, and what your MSP needs to be thinking about today.
SMBs are not immune from cybersecurity risks—quite the contrary. Our 2020 survey of 700 SMB decision makers uncovered interesting findings about how these businesses are thinking about cybersecurity, their spending plans, and what motivates them when it comes to security.
Your clients need training so that they can help keep themselves safe from cybersecurity threats—but what should that training include? This post from a ConnectWise cybersecurity expert lays out several key areas to cover in cybersecurity training.
All it takes is a click to fall prey to a phishing email, but many of your clients’ employees may not understand what to look for and when to be suspicious. This blog post explores the value of providing security awareness training for clients.
Email is one of the most basic tools for businesses today—it’s impossible to exist without it. And yet, email can pose a big threat via phishing. This post explores some of the things your MSP’s clients may be missing when it comes to protecting their inbox and company.