June 1 marks the official start of the 2020 Atlantic hurricane season. The Cybersecurity and Infrastructure Security Agency (CISA) warns users to remain on alert for malicious cyber activity targeting potential disaster victims and charitable donors following a hurricane.
Fraudulent emails—often containing malicious links or attachments—are common after major natural disasters. Exercise caution in handling emails with hurricane-related subject lines, attachments, or hyperlinks. In addition, be wary of social media pleas, texts, or door-to-door solicitations relating to severe weather events.To avoid becoming victims of malicious activity, users and administrators should review the following resources and take preventative measures.
- Staying Alert to Disaster-related Scams
- Before Giving to a Charity
- Staying Safe on Social Networking Sites
- Avoiding Social Engineering and Phishing Attacks
- Using Caution with Email Attachments
If you believe you have been a victim of cybercrime, file a complaint with the Federal Bureau of Investigation’s Internet Crime Complaint Center (IC3) at www.ic3.gov.
KnowBe4 has new phishing templates available focused on Hurricane-related scams. We listed all of the templates below:
Google: Hurricane Relief Funds (Link)
- US Link:
https://training.knowbe4.com/email_templates/1067369/edit? type=system - EU Link:
https://eu.knowbe4.com/email_templates/262978/edit?type= system
HR: Join [[company_name]] in supporting hurricane disaster relief efforts (Link) (Spoofs Domain) (Branded)
- US Link:
https://training.knowbe4.com/email_templates/1560316/edit? type=system - EU Link:
https://eu.knowbe4.com/email_templates/422001/edit?type= system
[[state]] Disaster Recovery Program: Hurricane Debris Removal (Link) (SPF)
- US Link:
https://training.knowbe4.com/email_templates/1560317/edit? type=system - EU Link:
https://eu.knowbe4.com/email_templates/422002/edit?type= system
You can also be able to search the template by the template name. It's important to implement new-school Security Awareness training to ensure users are aware of these related scams.
Let's stay safe out there!
New-school Security Awareness Training is critical to enabling you and your IT staff to connect with users and help them make the right security decisions all of the time. This isn't a one and done deal, continuous training and simulated phishing are both needed to mobilize users as your last line of defense. Request your one-on-one demo of KnowBe4's security awareness training and simulated phishing platform and see how easy it can be!
