But first, a Year End Safety Minute

Get emails that looks like this from any of your vendors?

It’s a phishing and malware nest of vipers out here on the Internet! And, they are getting craftier:

1. The from address is really long so it is off the email and if you don’t look at it you might think it is real. When you look at the source code for the email in an editor, the address is: outlookactmanagecenteroffice365centerservices@scaironomartinez.com
2. Scairono Martinez Architects – who got their server hijacked – is a firm on Magazine Street in New Orleans. YOU probably don’t know them at all!
3. But, they still make the mistake that there is such a thing as an Outlook Account anymore. There is not. Outlook is a mail application and your account is Exchange or something else.
4. There is NO Microsoft “Head Office” nor an Outlook Way.
5. Finally, once again, there is no Copyright Notice on the email. Sure give away that this is NOT from Microsoft.

If you get any of these, forward them to abuse@microsoft.com and then delete them.
Now that you are going to be safe from malware phishing, here are a few more CyberTips for 2018:

1. Develop a current physical map of your network
2. Catalog all devices and the applications/operating systems they host
3. Maintain current directory of all users with access levels, roles and responsibilities
4. Define and follow Management of Change process for all components of your networks
5. Institute Software Configuration Management process for all applications, test them and include application patch management
6. Enforce strong standards for user identities and passwords
7. Collect all the data and forensics you can on every device that touches your network and regularly ANALYZE the data!
8. Put in place operations-specific user awareness programs

For more information about Athens Group Services’ Digital Consulting options, reach out to us.