Security alert: Attacks on business email accounts are surging

Security alert: Attacks on business email accounts are surging

Email has become an essential tool for any successful business, but as the saying goes, “with great power comes great responsibility”.

As a business owner, it’s your responsibility to make sure your emails are secure. It’s one of the key ways to stop your business data falling into the wrong hands.

Business Email Compromise (or BEC) is a growing threat. And if you become a target, it could cost you – big time.

So, what exactly is a BEC attack?

In simple terms, it’s where scammers pose as people high up in the business, like CEOs, executives, and IT staff. The goal is to trick your employees into sharing sensitive information or sending money. Research shows that nearly 90% of BEC attacks are set up this way.

It’s easy to see how someone might quickly respond without a second thought, especially when they trust the sender.

BEC attacks have spiked dramatically this year, especially over the third quarter. Researchers have analysed 1.8 billion emails worldwide, discovering a shocking 208 million malicious emails among them. And of these malicious emails, more than half (58%) were BEC attempts.

The figures make it clear: BEC scams are now the biggest email threat to businesses.

Another thing worth noting? Most BEC scams target employees lower in the business, who might be less likely to question authority or be less aware of cyber threats.

Although BEC attacks are common, it’s also important to remember that scammers still use other methods too. This includes commercial spam and phishing attacks, which are designed to trick people into sharing personal information, like login details.

In fact, the combined effect of these types of scams now overshadows traditional ransomware and malware attacks.

Luckily, it isn’t complicated or expensive to protect your business.

Simply make sure that all members of your team are trained to think twice about every email they receive.

If an email asks for sensitive information or a financial transaction – especially if it feels urgent – your employees should know to stop and check with someone before they action anything.

If you need help making sure your business is secure, get in touch.

Beware that “support call” – it could be a ransomware scam

Beware that “support call” – it could be a ransomware scam

If you get a call claiming to be from Microsoft Teams support, think twice before doing what they ask.

There’s a new trend for scammers to pose as “help desk” staff, with the aim of tricking employees into letting them take over their devices.

This is part of a larger ransomware attack, where you’ll be denied access to your business data unless you make a hefty payment to get it back.

Recently, a notorious cyber crime group has taken this scam to a new level.

First, they’ll flood an employee’s inbox with so much spam that it becomes unusable. Then they swoop in with a phone call, pretending to be from IT support, offering to “fix” the problem.

They may ask your employee to install remote desktop software like AnyDesk or use built-in tools like Windows Quick Assist. Once they have access, they can move around your network, collect sensitive data, and launch ransomware on your devices.

Be warned – they don’t only reach out over the phone. They’ve also started setting up Teams accounts to make employees think they’re part of IT support.

They do this by choosing usernames like “Help Desk” and using fake Microsoft tenant domains such as “securityadminhelper.onmicrosoft .com”. Then they send one-to-one messages to employees, saying they need access to their device.

Ransomware attacks are serious business. Along with locking you out of your data, they can also shut down your operations, disrupt customer service, and potentially leak confidential information.

Recovering from a ransomware attack can be expensive, both in terms of paying the ransom and dealing with the aftermath. It can cause loss of revenue, damage your reputation, and it could even have legal consequences.

Make your team aware of this scam and encourage everyone to be cautious with any unsolicited support calls or Teams chats. And make sure everyone knows to check with your actual IT department first, if someone is asking to install software or gain access.

Also, if you use Microsoft Teams in your business, make sure it’s set up securely. Only allow external chats from trusted domains, and make sure chat logging is enabled.

If you want extra help safeguarding your setup, we can do that. Get in touch.

Here’s how to fix that Windows 11 File Explorer glitch

Here’s how to fix that Windows 11 File Explorer glitch

If you’ve installed version 24H2 of Windows 11 for your business, you might have noticed an annoying glitch in File Explorer.

File Explorer is that familiar window you use to browse your files and folders. Normally, it’s straightforward – but some people are running into issues with the “See more” menu after downloading this update.

The menu, which is marked by three little dots, usually pops up below your mouse cursor, giving you options like “Select All” or “View Properties”.

But thanks to a recent bug, the “See more” menu is flying up to the top of the screen, often disappearing out of sight. And if you’re using File Explorer in full-screen mode, some menu options might not even be visible.

Frustrating, to say the least.

Luckily, there’s a simple workaround: Just make sure you’re running File Explorer in windowed mode where it shares the screen with other applications. To do this, click the square icon in the top-right corner (next to the “X” you’d click to close it).

You can then resize the File Explorer window, allowing you to use the “See more” menu, even if it’s still misbehaving.

The good news is that Microsoft are aware of the problem. They’re working on a fix.

Little glitches like this can be a nuisance when you and your team are trying to get things done.

Can we help you squeeze more productivity out of your applications? Get in touch.

How to Effectively Manage Your (new) Remote Workforce

Common Challenges

Fortunately, working remotely isn’t a new thing. There are millions of people across various industries that have been managing to work from home successfully for years, from freelance web designers all the way to billionaire CEOs. That means we’re not starting from scratch, we have actionable data, tips, tricks and insights from remote-work veterans. One of the best ways to start is by looking at the most common challenges that newly remote staff face, and address the concerns of employers.

Managers, directors and employees often express concerns over the lack of face to face interaction. Supervisors worry that employees will take the opportunity to slack off or be otherwise inefficient and fail to produce optimal results (research proves that these stigmas have no factual basis for over 78% of home-based workers).

On the other hand, some employees (under 9%) feel that they lack managerial access and support. Some studies have shown that remote workers feel their out-of-reach managers aren’t in-touch with their actual needs and therefore aren’t equipped to offer the support their teams require.

Lack of accessible information is another common challenge your newly remote workforce can be faced with. Even getting answers to simple questions from colleagues can prove a difficult task. We find that having company-wide intranets or basic internal wiki pages can ease the vast majority of information-related issues. Text based instant messaging between your employees through an internal system like Microsoft Teams helps to alleviate wait times between emails for time-sensitive feedback and communication.

Then there’s the big “what if”, the unknown. Trust plays a large part of managing a remote team. When you think “remote work” or “work from home” you’re programmed to believe it’s unproductive. Why? For years, we’ve been bombarded with articles, tv shows and movies that depict it as an ‘easy’ alternative to ‘real work’, a way for slackers to get by. Then there’s all the photos of mothers laying on the sofa with one hand on their laptop and the other wrapped around their new-born baby. None of this could be further from the truth.

Virtual work isn’t easy, it’s not only for stay-at-home parents, and the vast majority of the world’s remote workforce simply aren’t sitting on the sofa perusing Facebook or reading Martha Stewarts latest fat-free cheesecake recipes. It’s hard work, that does of course come with the benefits of providing a great work/life balance. Once you’ve mastered the art of remote work, you’ll become a happier, more efficient and productive employee. You might even be able to find a couple of minutes to get some laundry done or fill the dishwasher.

Establish Daily Check-ins

The workplace daily check-in was largely popularized by North American fur traders in the late 1500’s. Originally used as a way to easily communicate when the remotely located Native Indian tribes had fur shipments ready to be collected for transport. It was effective then, and it’s equally as effective now. It’s not recommended to travel on horse-back to deliver handwritten scraps of paper of course, we’ve since modernised and become accustom to video calls and mobile phones.

Establishing daily check-ins with teams or individuals helps everybody get on the same page, where the team is up to and how the day’s tasks are laid out. Make sure to leave some time for a non-evasive personal note, ask somebody how their weekend was, if they’ve been watching a particular series on TV. You’ll be surprised how much your staff’s morale can be affected, and how the little things boost motivation.

Establish a Variety of Communication Options

We live in a connected world, with a society that thrives on social interaction. It’s true that not all humans get their social needs dealt with through the same ways. For example, some people won’t hesitate to pick up a phone and make a call to a friend or family member.

Not too far from those people, are those who crave face to face social connection – In cafes or going out on a Friday night for example. Then on the other end of the spectrum, there’s the stereotypical gamer, getting their social fill through talking to people they’ve never met, whilst digital bullets fly across sci-fi themed landscapes.

With all this in mind, huge, international companies have devised a wide range of different work-related communication options, instant messaging, emailing, video calling, cloud-based phone systems, the list goes on.

The most successful remote companies have implemented a multitude of different options for both their staff, and their clients. It’s good to tick a few boxes, and there’s a huge choice of technologies to help you achieve them.

  1. Internal Info Hub – Microsoft Teams, SharePoint, Facebook Workplace, Google Plus.
  2. Instant Messaging – Microsoft Teams, Slack, Facebook Messenger, Google Hangout.
  3. Video Calls & Conferencing – Microsoft Teams, Zoom, Google Duo.
  4. Cloud Phone System – BlueBox Hosted, PBX, 3CX, Panasonic, Spek.

Opportunity for Remote Social Interaction

In situations where you’re forced to work from home, it’s a good idea to stimulate social interaction between your staff and different teams. Different businesses do it in different ways, we’ll look at some of our personal favourites from small and large companies alike.

Lunch Dates

Encourage teams to organise video-based lunch dates, even if it’s just a brief get-together between 2 or 3 people. How does it work? It’s a really simple one – jump on a video call and have lunch like you were in the office kitchen area.

Poker Breaks

Although not such a popular ‘sport’ in the UK as it is in the US, Poker and other card games are highly effective at engaging people and provide much needed downtime and a solid social aspect. How can you play inter-team card games like Poker?

There’s plenty of options, you can try out an online browser-based card game that supports multiplayer like PokerStars, GGPoker or any of the multiplayer Miniclip games. You can also try video poker, where a member of the team acts as a dealer, with their camera facing top-down on the cards that are played on the table.

Pizza Party

One of the popular ideas from Google’s globally distributed remote teams is to have organized pizza parties. Usually taking place on a Friday, the employer or team leader will arrange for pizzas to be delivered at the same time to each of the staff, who will then open their pizzas during a video call – much like the lunch date option, but more rewarding since it’s a free pizza!