News -
AI creates new opportunities for IT fraudsters – how to reduce the risk of attacks during the holidays
Everyone has been talking about AI during the spring and AI is creating many new opportunities. Opportunities that IT fraudsters are sure to also take advantage of. The risk of IT fraud also generally increases during holiday periods. However, it is possible to reduce the risk of attacks and Dennie Karlsson, CISO of Dustin, offers suggestions for what you can do to help you or your company avoid cyber attacks during the summer holiday period.
“Generative AI, which is AI used to create text, images, network code etc, is offering new opportunities to IT fraudsters. Using the technology, it is possible to quickly write a phishing campaign, for example, that is tailored for a specific company,” says Dennie Karlsson, CISO Dustin.
The risk of IT fraud is particularly great for companies that lack their own security department and 24/7 monitoring. Phishing is one of the most common methods of attack and the number of phishing e-mails increases during the holiday period. The method is designed to trick the receiver into opening a document, visiting a website or downloading a file by clicking a link. The aim is to gain access to money and passwords. The e-mails often look like they are from the company’s CEO, for example, and the recipient is encouraged to act swiftly.
Keep calm and use the STAR method
“If you receive this kind of e-mail, it is important to remain calm. Do not act hastily, and never click a link or respond to any urgent calls to action. Use caution if you receive an email or text message that urges you to click a link and think carefully before taking any action,” says Dennie Karlsson.
“If you are unsure, the STAR method is good to fall back on. STAR stands for: Stop, Think, Ask and Report.
“The STAR method is an effective way to reduce cyber attacks. Stop – do not click the link, and ignore any other requests. Think carefully, and assess the risk based on what you know. Ask someone for a second opinion, and Report the suspected phishing attempt,” concludes Dennie Karlsson.