Brutal Truth, Even You Can Get Hacked!
A totally(!) legit WiFi network.

Brutal Truth, Even You Can Get Hacked!

Cybersecurity for Salespeople

Even savvy people can get tricked. I wrote this column by request since salespeople seem especially susceptible. I know I have some followers who work in cybersecurity, so I’m asking them to correct anything I get wrong and add further suggestions.

I’ll cover public Wi-Fi, social engineering, passwords, password apps, employment scams, Social Media, and phishing via email and phone. Most of these involve social engineering rather than actual hacking. Social engineering uses deception in information security to manipulate individuals into divulging confidential or personal information. Some use this information for fraudulent purposes.

My first brush with Cybersecurity at work was when I started traveling and using public Wi-Fi around 2007. I had no idea going on Wi-Fi in an airport or at my hotel put me in danger. Someone hacked my 401k and withdrew $4,000. I got the money back, and then I started learning about Cybersecurity. No more public Wi-Fi for me! VPN or tethering to my iPhone are much better options.

This tip comes from my friend Sherrod DeGrippo , a threat intelligence expert. I asked her about password apps, and she recommended them. They make it much easier and more secure than putting all your passwords in a text file, which is insecure.

I’ve been surprised by how many people use the same password for multiple accounts or make them easily hackable. To create a strong password, include numbers, symbols, and uppercase and lowercase letters. Avoid using words found in the dictionary. For example, monkey1 would be a weak password. Random passwords are the strongest. Also, longer passwords are stronger.

There are lots of ways hackers try to get you. When you get an unexpected email:

  1. Check out the actual originating email address.
  2. Be very careful about clicking on any links.
  3. If the email sounds urgent, that’s a great time to slow down, stop, and think.
  4. Contact the sender via another channel if you have questions about the email's legitimacy.
  5. If you get an email or a call from any organization asking for personal information, don’t give it out. Instead, go to the number or website you used to contact the company and inquire there.
  6. It may be tempting to respond to phishing emails with a nasty message, but that lets the hacker know that your email is live and someone is checking it. Resist!

Sadly, there are many scams tied to employment. Here are some common ones:

  • Legitimate employers don’t require applicants to pay money before starting work. This includes paying for training or background checks.
  • Job offers from companies you don’t remember applying to are a huge red flag.
  • Job postings that promise high pay, little effort, or a guarantee of employment may be scams.
  • If the job posting or email is not proofread, it may indicate that the company is looking for anyone desperate enough to apply.
  • Scammers may want your bank details or other personal information.
  • Don’t put your full address on your résumé. City and state are sufficient. Never, ever put your Social Security number on there.
  • All communications may be on chat apps instead of email.

If a recruiter approaches you, check them out on LinkedIn. Look up the company. If you have any questions about the legitimacy, call the company based on the number they publish.

Many companies have disclaimers on their career site if they’ve recently been targeted by people trying to gather information fraudulently from candidates. If anything sounds too good to be true, it probably is.

I look at more career sites than most people, and yesterday,?Bitsight?won for best warning. (https://www.bitsight.com/about/careers)

Here’s a story about how I caught a hacker. When I worked at New Scientist Jobs, a man called me wanting to place an unusually large buy with me—large enough for me to want to meet him in person. I saw his ads on Monster which made me think they were legitimate. But I needed to be convinced.

I again offered to come to see him, and this time he sounded nervous. I turned down the buy. I looked up the company’s phone number outside of their website. The REAL owner had been frantically trying to solve this problem. The man I spoke to had hacked her website, changed her name and phone number, and placed recruitment ads on job boards to gain access to candidate information.

I recorded all my calls with him and gave the business owner that information to give to the police. She regained control of her website, and the Monster salesperson caught on shortly after.

Besides employment, social media is often a target of scammers.

Social Media, especially Facebook, leaves people open to several issues. Posting that you’re going on vacation lets robbers know your house may be vulnerable. I’ve also noticed many people getting spoofed and thinking they got hacked.

This is what spoofing on Facebook can be. Someone steals your picture, copies your friends’ list, makes a fake account, and then messages your friends, telling them that “you” need help and asking for money. People may think it’s you and get tricked into paying them. Besides deleting your Facebook account, hiding your friends list is the easiest solution. Then scam artists can’t copy them onto the fake account they’ve made of you.

Some Facebook accounts also ask questions that could reveal a password or identity clue. They ask things like, what was the number one song the year you were born? If your friend answers them, you’ll see it in your feed. The best way to get rid of these posts is to block the account doing the phishing rather than your friend. You can train the algorithm to show fewer if you do it enough.

I’ll wrap this up with phone calls. The IRS is never going to call you. That’s not how they operate. If you get a call from any company claiming to be Social Security, the government, Visa, MasterCard, or other slightly scary official bodies, take their name and number and disconnect. Then, use your research skills to contact the entity and determine if it’s legitimate. It’s very likely not.

Be careful out there, and I hope that this was helpful.

My employer, NAS Recruitment Innovation, can help with your messaging and career site.

All opinions are mine.

Jessica L. Benjamin

Germaine J Muirhead

Actively seeking an Account Executive, Inside Sales or Account Manager role

6 个月

This happened to me in 2017 when a hacker e-transferred $1500 out of my RRSP because I accidentally clicked on a Phishing link.

回复
Brigitta Ruha

Clay Enterprise Partner | I'll help you build a scalable outbound engine that gets meetings booked on autopilot in the next 180 days | Visit Youtube: @growth-today to see how

6 个月

keeping up with security measures is crucial for everyone involved

回复

要查看或添加评论,请登录

Jessica L. Benjamin, J.D.的更多文章

  • Crafting Job Advertisements That Convert Qualified Applicants

    Crafting Job Advertisements That Convert Qualified Applicants

    I’ve written many job ads over the years. When I worked at job boards, clients were often more than happy to leave…

    1 条评论
  • Stop Flooding the Zone With Your Resume

    Stop Flooding the Zone With Your Resume

    You can use sales techniques to land a new job These days, I come online and see all the job seekers looking for help…

    6 条评论
  • Recruitment Win

    Recruitment Win

    How to Attract and Keep Top Talent in Your Pipeline Say you're working on talent acquisition and recruitment for a…

    8 条评论
  • Negotiations 101

    Negotiations 101

    When John Gates, the author of Act Your Wage: What to say (and how to say it) to get the best possible salary package…

  • Ditch Your Elevator Pitch

    Ditch Your Elevator Pitch

    Since I entered the world of professional sales in my early twenties, one common sales theme that managers attempted to…

    9 条评论
  • Applying and Recruiting Like It’s 1999?

    Applying and Recruiting Like It’s 1999?

    A few have missed the mark when you look at how some employers and recruiters recruit and some jobseeker behavior. This…

    6 条评论
  • Build an Account Executive & Sales Development Representative Partnership

    Build an Account Executive & Sales Development Representative Partnership

    The model of hiring full-cycle salespeople to work with a sales development representative team isn’t particularly new.…

    5 条评论
  • The Bystander Effect at Work

    The Bystander Effect at Work

    The bystander effect occurs when the presence of others discourages an individual from intervening in an emergency: the…

  • How to Hire a Successful Salesperson

    How to Hire a Successful Salesperson

    Some people get nervous about hiring a salesperson. What if they fail? Well, that's an interesting question.

    13 条评论
  • The new rules for succeeding in a sales job

    The new rules for succeeding in a sales job

    Closing the deal now happens more often over Zoom and email than over beers. Here’s how to win when you can’t wine and…

    1 条评论

社区洞察

其他会员也浏览了