Schooled by a Tuna – Fresh Phish Fears

Excerpt from:

Train Your Workforce, so They Don’t Get Caught by a Phish!
Office of Civil Rights at the Dept of Health & Human Services

How often to train workforce members on security issues, given the risks and threats to their enterprises, and how often to send security updates to their workforce members. Many entities have determined that bi-annual training, and monthly security updates are necessary, given their risks analyses.

Still convinced that you, your employees, or your suppliers would never click on a phunky phishing email?

Sorry Charlie, you are one gullible tuna.

Global Threat Visibility

During the second quarter of 2017 (Q2 ‘17), NTT Security researchers and analysts uncovered information through the research of significant events, identified via global visibility of the NTT Security client base. Some of the key findings based on this research include:

  • Overall, NTT Security observed a 24 percent increase in attacks against our clients during Q2 ’17 over the previous quarter.
  • Based on NTT Security client data, cyber criminals appear to be leveraging phishing emails with malicious attachments containing PowerShell commands in VBA macros as a primary attack vector.
  • 67 percent of all malware distribution in Q2 ‘17 was email-based.  {i.e., phishing emails, emphasis supplied}


Kaufman Rossin is in the vanguard of CPA firms embracing cyber awareness education for its clients. Good on them!

Did you know? 93% of cyber-attacks start through phishing. 

Phishing is the process of sending a message containing a malicious link or attachment to victims in an attempt to obtain their private information. It is the most successful form of cyber-attack. The average total cost of those attacks on a business? $4 million.

And please: Be careful out there, Because #RiskcanRuin !!! 

Kevin Keane, Attorney-at-law