
Phishing Attacks Checklist

Small business phishing attacks always question suspicious or unusual requests.
Important to scan for malware and change passwords as soon as possible if you suspect a phishing attack.
We have created a few checklists to help Small Business Cyber Security.
Small Business Phishing Attacks Checklist
Account Configuration
Staff should only have basic email privileges so the lowest level rights needed to perform their job.
Administrator accounts have many more access rights if unauthorised access is achieved can be far more damaging than basic user account.
Use Two-Factor Authentication
Two-factor authentication (2FA) attackers won’t be able to access your account even if they know your passwords.
Operating Procedure
Think about your usual working procedures and how you can help make common tricks less likely to succeed.
Examples: Unusual requests / Invoices, Impersonating banks
Report Suspicious Emails
If any suspicion you must take steps to scan for malware and change passwords immediately.
Signs of Phishing
Phishing emails fit a certain mould so can look out for a number of warning signs.
Digital Footprint
Attackers use publicly available information to make their phishing messages more convincing.
This can be from your website or social media accounts.
Related Checklists

Signs of Phishing Attack Checklist
Longest running methods of cyber crime which people consistently fall victim to.

Phishing Attacks Checklist
Always question suspicious or unusual requests. Scan for malware and change passwords