Did you know that 60 percent of small businesses close after a cyber breach? Did you now that businesses with 1,000 employees or less have a 90 percent likelihood of having a data breach costing more than $216,000. This means that your company is squarely in the bulls-eye of the cyber bad guys. But there is hope. Statistics show that increased investment in employee training can reduce the risk of a cyber-attack by 45 to 70 percent.

Phishing is defined as an attempt to obtain sensitive information such as usernames, passwords, and financial details, often for malicious reasons, by disguising as a trustworthy entity in an electronic communication. These emails are the number one attack vector utilized by cyber criminals. Please see the following tips to avoid becoming the next victim:

• Don’t Trust the Display Name

  Check the sending email address. If it looks suspicious, don’t open the email. Also, the sending name can be spoofed and should never be trusted.

• Look For Spelling and Grammar Mistakes

  Legitimate companies will almost always use proper grammar, and scammers do not always have a mastery of the English language. A spelling mistake is a sure-fire tip that the email is not on the up-and-up.

• Never Give Up Personal Information Via Email

  Legitimate companies will never ask you for personal data (credentials, account numbers, social security numbers, etc.) over email. If you are asked for information that gives you pause, pick up the phone and call the supposed requestor.

• Don’t Fall Victim to F.U.D.

  Scammers will try to instill F.U.D (fear, uncertainty, and doubt) in hopes of making their victims act out of emotion. Think twice when you see emails asking you to act urgently or bad things will happen (account closure, loss of money, etc.).

• Look But Don’t Click

  Hover your mouse over any links embedded in the body of the email. If the link address looks peculiar, don’t click on it. It’s not worth it.

• Don’t Click on Pictures

  Pictures can have embedded hyperlinks which could take you to infected websites. Never click on pictures in email messages.

• Don’t Open Attachments or Links

  The most important tip to avoid becoming a phishing victim is to simply not click on links and attachments unless you are absolutely certain that the source is legitimate. These links and attachments are how the payload is delivered so think thrice before clicking.If you have a request to pay an attached invoice from a vendor, be sure to examine the email closely using the aforementioned tips. Pick up the phone and call them to verify. If the CEO asks you to wire money to an account, pick up the phone and call him/her to verify.

To close, remember that if you have the slightest doubt or hesitation about an email or request, don’t click the embedded link or attachment. It’s simply not worth it.