Mobile fraud is reaching unprecedented levels, and users are vulnerable in numerous ways, including the following:
Mobile fraud prevention is crucial for any business when you consider how integrated mobile has become in people’s work lives. Mobile devices are no longer personal devices because they’re often used to access secure company data.
Here are some tips to train your staff to avoid mobile fraud:
Don’t assume that all your employees are savvy enough to spot a scam. In fact, assuming the opposite is a safer approach. Teach employees how to spot red flags in email or text messages such as:
Employees should learn the following:
Of course, not all attacks will be so obvious and, unfortunately, fraudsters are becoming more sophisticated in their approaches. Routine updates to apps that require password entry may be hacked to gain access to your mobile and linked accounts.
David Ting, CTO at Imprivata, suggests that companies incorporate a single sign-on (such as LastPass or Yubikey) to eliminate passwords in favor of more secure authentication methods.
Most mobile companies let you send and receive texts with an alias instead of your phone number. You can create a safe list of friends and family to give your alias to and then disable your phone from receiving texts from anyone not using your alias. This will considerably reduce your vulnerability to smishing texts.
Some companies specialize in training businesses to avoid phishing scams. PhishMe or PhishLine perform tests by sending fake phishing messages to your staff. They’ll send you a report on how many employees clicked on the phishing links and note where they clicked (desktop, laptop, tablet or mobile), allowing you to target your staff training to address specific problem areas. It also gives your IT department a head start in developing security procedures for your company’s weak spots.
Scams evolve and become more advanced and sophisticated. Therefore it’s important to keep employees up to date on new scams and policies, and offer new training periodically to minimize your company’s risk.
Minimize mobile fraud risks by educating your employees. Strengthen your security defenses, use services that help you test whether employees are adequately trained and consistently update your training to include new information.
By being aware and mindful, you can train your team members to spot questionable messages on their smartphones and protect company data.