Phishing trends
Stealing credit card information and selling organizational credentials have consistently topped the list. However, cyber criminals also use recent events (like the war in Ukraine or a major internet outage) and seasonal activities (like tax filing or tuition fee payment deadlines).
Cyber criminals also use persuasive messages such as romance scams, payment requests, refund messages, or even security alert messages from your bank, Canada Post or Amazon account to redirect us to a copy of the website that is almost identical to the legitimate provider’s website.
Social engineering
Cyber criminals use a broad range of human interactions to trick us into making security mistakes. They can start by building trust, showing empathy, sending fictitious threats or providing fake incentives like limited-time or discount codes.
The goal of social engineering is to unconsciously force us to compromise our privacy and security, which can impact our surroundings and put ourselves and our organization at risk. Let’s be cautious and analyze tempting messages thoroughly. When in doubt, verify what is being asked by a person on a different communication channel. Ex: if you receive a request by email from your professor to buy gift cards, validate with them in person if this email comes from them).
Malware and Ransomware
Any malicious software that wants to use our information without our consent is generally known as malware. Ransomware is a type of malware that infects computers and prevents access to our data. Cybercriminals usually ask for non-traceable cryptocurrencies to unlock (or decrypt) our data. Prevention is much easier and has a lower cost than the cure. We should not click on links that we do not fully trust. Install an antivirus on your computer, and always do backup of your important information (including your pictures).