Email is a useful way to communicate, but it can also be a platform for increasing cybercrime. Every day, 14.5 billion spam messages fill email inboxes. While some spam is just annoying, a large part of it consists of phishing attempts. Phishing emails are fake messages aimed at stealing personal information. Each day, they can result in significant losses for unsuspecting recipients.
By 2025, phishing attacks will cost $10.5 trillion each year, according to Cybersecurity Ventures. Cybercrime is the 3rd largest economy in the world, after the US and China. Since phishing is often the first step to bringing malware into a system, ransomware has reached everyone from consumers to big business. In recent times, a cyberattack against Colonial Pipeline caused massive gas panic. A recent NotPetya ransomware attack stole consumer information from the large corporate giant, FedEx.
If large corporations can be brought to their knees by ransomware, imagine the impact cybercrime has on small businesses. More than 60% of small businesses permanently close 6 months after a phishing attack. For those that do recover, it can take up to 6 weeks and major consumer losses to get past a data breach. Most consumers don’t shop at businesses incapable of protecting their data.
What can businesses do to protect themselves and their customers? Protecting documents and folders is an important first step that 95% of companies have yet to take. Nearly 1 in 5 of employees click phishing links, meaning 85% of scams involve human error. Establishing an employee training program is a crucial component, though that will not prevent every attack. Because the majority of attacks involve credential harvesting, businesses should verify all invoices and payments. No matter the email security program a company uses, one should always keep an eye out for discrepancies. While humans can’t catch 100% of problems, 25% of phishing emails bypass default security.
Infographic Source: Avanan