Brutal Truth, Even You Can Get Hacked!
Jessica L. Benjamin, J.D.
Sales Director | Recruitment Marketing | Employer Branding | HR Tech | Your Leading Partner for Your Critical Hiring Needs ?
Cybersecurity for Salespeople
Even savvy people can get tricked. I wrote this column by request since salespeople seem especially susceptible. I know I have some followers who work in cybersecurity, so I’m asking them to correct anything I get wrong and add further suggestions.
I’ll cover public Wi-Fi, social engineering, passwords, password apps, employment scams, Social Media, and phishing via email and phone. Most of these involve social engineering rather than actual hacking. Social engineering uses deception in information security to manipulate individuals into divulging confidential or personal information. Some use this information for fraudulent purposes.
My first brush with Cybersecurity at work was when I started traveling and using public Wi-Fi around 2007. I had no idea going on Wi-Fi in an airport or at my hotel put me in danger. Someone hacked my 401k and withdrew $4,000. I got the money back, and then I started learning about Cybersecurity. No more public Wi-Fi for me! VPN or tethering to my iPhone are much better options.
This tip comes from my friend Sherrod DeGrippo , a threat intelligence expert. I asked her about password apps, and she recommended them. They make it much easier and more secure than putting all your passwords in a text file, which is insecure.
I’ve been surprised by how many people use the same password for multiple accounts or make them easily hackable. To create a strong password, include numbers, symbols, and uppercase and lowercase letters. Avoid using words found in the dictionary. For example, monkey1 would be a weak password. Random passwords are the strongest. Also, longer passwords are stronger.
There are lots of ways hackers try to get you. When you get an unexpected email:
Sadly, there are many scams tied to employment. Here are some common ones:
If a recruiter approaches you, check them out on LinkedIn. Look up the company. If you have any questions about the legitimacy, call the company based on the number they publish.
Many companies have disclaimers on their career site if they’ve recently been targeted by people trying to gather information fraudulently from candidates. If anything sounds too good to be true, it probably is.
I look at more career sites than most people, and yesterday,?Bitsight?won for best warning. (https://www.bitsight.com/about/careers)
领英推荐
Here’s a story about how I caught a hacker. When I worked at New Scientist Jobs, a man called me wanting to place an unusually large buy with me—large enough for me to want to meet him in person. I saw his ads on Monster which made me think they were legitimate. But I needed to be convinced.
I again offered to come to see him, and this time he sounded nervous. I turned down the buy. I looked up the company’s phone number outside of their website. The REAL owner had been frantically trying to solve this problem. The man I spoke to had hacked her website, changed her name and phone number, and placed recruitment ads on job boards to gain access to candidate information.
I recorded all my calls with him and gave the business owner that information to give to the police. She regained control of her website, and the Monster salesperson caught on shortly after.
Besides employment, social media is often a target of scammers.
Social Media, especially Facebook, leaves people open to several issues. Posting that you’re going on vacation lets robbers know your house may be vulnerable. I’ve also noticed many people getting spoofed and thinking they got hacked.
This is what spoofing on Facebook can be. Someone steals your picture, copies your friends’ list, makes a fake account, and then messages your friends, telling them that “you” need help and asking for money. People may think it’s you and get tricked into paying them. Besides deleting your Facebook account, hiding your friends list is the easiest solution. Then scam artists can’t copy them onto the fake account they’ve made of you.
Some Facebook accounts also ask questions that could reveal a password or identity clue. They ask things like, what was the number one song the year you were born? If your friend answers them, you’ll see it in your feed. The best way to get rid of these posts is to block the account doing the phishing rather than your friend. You can train the algorithm to show fewer if you do it enough.
I’ll wrap this up with phone calls. The IRS is never going to call you. That’s not how they operate. If you get a call from any company claiming to be Social Security, the government, Visa, MasterCard, or other slightly scary official bodies, take their name and number and disconnect. Then, use your research skills to contact the entity and determine if it’s legitimate. It’s very likely not.
Be careful out there, and I hope that this was helpful.
My employer, NAS Recruitment Innovation, can help with your messaging and career site.
All opinions are mine.
Jessica L. Benjamin
Actively seeking an Account Executive, Inside Sales or Account Manager role
6 个月This happened to me in 2017 when a hacker e-transferred $1500 out of my RRSP because I accidentally clicked on a Phishing link.
Clay Enterprise Partner | I'll help you build a scalable outbound engine that gets meetings booked on autopilot in the next 180 days | Visit Youtube: @growth-today to see how
6 个月keeping up with security measures is crucial for everyone involved