Office 365 phishing: the latest scams your employees need to know about

StrategyDriven Risk Management Article |Office 365 Phishing|Office 365 phishing: the latest scams your employees need to know aboutMicrosoft’s Office 365 is often targeted by scammers and cybercriminals. This is a major problem, as Office 365 is one of the most widely used software suites by businesses around the world – undoubtedly part of the reason that it is so often under attack.

Despite the fact that the UK’s National Cyber Security Centre (NCSC) has made a concerted effort to implore system admins to implement stronger cybersecurity practice, Office 365 is still exceptionally vulnerable. In fact, there is damning evidence from Microsoft itself about the security practice of its users.

Through a security dashboard available to Office 365 administrators, users are given a ‘security score’ to indicate the strength of their defences and security processes. The maximum score is 707, and yet the average Office 365 score is just 37.

Businesses using Office 365 need to ensure that they are taking their cybersecurity extremely seriously. One of the most important ways of doing this is to provide your employees with as much information on the types of attacks they can face as possible. Some of the most common scams are phishing schemes – and these can take many forms.

Some of the Office 365 scams to look out for

Cybercriminals use a wide variety of tricks in attempting to compromise users – this can involve impersonating Microsoft or other well-known businesses. While there is an almost unlimited variation in the types of scams, some of the most widely seen include the following

  • Fake meeting requests – this type of phishing scam sends messages that spoof the name and email address of a senior executive and asks the users to reschedule a meeting, by taking part in a poll to choose the new date and time. When a user clicks on the link, they are presented with what appears to be an Office 365 login page but it is in fact a phishing site.
  • Employee pay rises – this scam uses the bait of a pay rise to convince employees to give up their Office 365 login credentials. The email contains a link to an apparent spreadsheet containing details of an employee salary increase – however, the link takes the user to a phishing site that looks like the Office 365 login page. This scam is especially effective because the login page displays the user’s email address prominently.
  • Voicemail scams – this scam makes use of a genuine audio recording that requests employees allow Microsoft access to their Office 365 account, along with an almost identical login page that actually harvests the victim’s details.
  • Content scams – it is also possible for criminals to utilise Microsoft Sway – a genuine presentation software – to create a spoofed site. This looks genuine and even experienced and knowledgeable users have been tricked into entering their details. The fact that the phishing email contains a link to a genuine Microsoft product makes it very difficult to spot this form of cybercrime.
  • Conversation hijacking – this scam sees phishers infiltrate a genuine email account using previously compromised credentials, and then insert themselves into a conversion – essentially taking on the persona of the account that they have gained access to. When another employee gets an email from this ‘trusted’ colleague, they will happily click on the links they contain, which takes them through to a spoofed site.

Admins are targeted too

It is not just general employees who are targeted with phishing scams. IT administrators are singled out by cybercriminals, as their accounts typically have greater privileges and access to more company data. With access to an admin account, criminals can carry out extremely effective attacks against other members of the organisation by creating new accounts.

Administrators in Office 365 typically have access to all of the email accounts on the domain, which may allow cybercriminals to take over those accounts or retrieve emails from them.

How to improve your Office 365 security

Of course, improving employee knowledge is a vital way to reduce the effectiveness of phishing attacks. But it is also important to take a multi-layered approach to Office 365 security and put additional defences in place in order to mitigate the potential damage of an attack.

There are various steps that businesses can take such as enforce multi-factor authentication as a part of account access, as well as ensuring that administrators have a separate account for day-to-day access and only use the admin account when necessary.

It is almost important to invest in proactive monitoring of your network in order to detect any malware or unusual activity. The earlier that any suspicious activity is detected, the sooner it can be acted upon. This reduces the window of opportunity for a cybercriminal to achieve his or her intended goal.

How businesses can benefit from green tech investments

StrategyDriven editorial perspective Article |Green Tech|How businesses can benefit from green tech investmentsAs the focus on the environment continues to grow, businesses are now seeking out ways to adopt eco-friendlier practices. But green technologies can actually offer benefits to businesses as well as the planet, and the great news is that there are several options for companies to choose from.

From remote working to digital tools, here are a few of the ways that businesses can benefit from green tech investments.

Solar panels

Solar energy is one of the best investments you can make for your business. It powers the entire building and during peak generating times, it can even make money back! According to Geo Green Power, specialists in large-scale commercial solar panel arrays, generating your own solar energy will significantly reduce your carbon footprint, increase your company’s sustainable credentials and improve your business reputation.

It’s a great way of ensuring your business is more environmentally-friendly for the foreseeable future and can help to cut down energy costs too.

Wind turbines

If your business is located in a windy area, and there’s enough space to house them, wind energy is a great renewable source that has the potential to power entire businesses. There’s a huge amount of electricity which can be generated from a wind turbine, even if a smaller commercial windmill is chosen.

Small windmills have a power rating of up to 5kW which can generate up to 13Mwh a year – this is plenty to cover the energy needs of up to four average-sized homes or a business with the same-sized premises. Have the space for a larger wind turbine? This could be enough to generate power for a warehouse or packing facility.

Cloud computing

Businesses can make the most of cloud computing which helps to reduce wasted office space on large servers. Cloud computing also reduces the environmental resources required to keep servers running, such as server-farm cooling systems, which will reduce your business’ environmental impact and improve efficiency.

With cloud providers such as Amazon and Google running such efficient systems, there will be very little impact to your business in terms of the operational processes.

Remote working technology

Remote working is something that many workers have had to adapt to in 2020, but it’s actually the greener choice. By making the most of technologies such as collaboration tools, communication software and cloud platforms, staff can continue to work as efficiently as if they were in the office, without the need for commuting.

In addition to removing the commute for all members of staff, remote working also removes the need for a physical office and the many costs that come with that.

Green data centres

Data centres account for a huge amount of electricity each year, which results in vast amounts of fossil fuels being used to keep businesses running. But they also play an important role in the economy and are essential to businesses in today’s digital climate.

Companies can actually continue to make use of data centres while still reducing their carbon footprint by switching to hosting sites and applications in green data centres, which make the most of renewable energy sources instead of fossil fuels.

Go paper-free

We all know the importance of reducing our waste and that’s particularly important in businesses where paper documents and marketing materials can quickly build up. Switching to a unified communication system is a great way of helping businesses to reduce their carbon footprint and benefit the planet, while also saving money.
There are numerous tools and applications available now to create a streamlined communication system for businesses, from sharing documents in a paper-free way to storing files and information securely online instead of in paper form. Digital storage features don’t just benefit the planet by reducing waste and the need for paper, but they also ensure that information is easily accessible and safer from the risk of data theft or physical damage.

Final thoughts

Technology has the ability to provide innovative solutions to the environmental crisis, while also benefitting businesses in terms of convenience, efficiency and cost. From cloud computing to communication software and taking advantage of the ability to work from anywhere in the world successfully, businesses can become more sustainable without it impacting their productivity in a negative way.

It’s A Dog-Eat-Dog World Out There, But Only If You Allow It

Business is often described as a dog eat dog world. But things only usually get that bad if you let them. Here is some advice from entrepreneurs who learned serious lessons through their own experience on how to avoid getting screwed over by their business partners, and the people that they work with.

Always Avoid Emotionality

StrategyDriven Practices for Professionals Article

It’s great that passion motivates the positive aspects of your business and drives you forward to new heights. But passion in business can get you into trouble, especially when emotions turn negative. Things will go wrong in business. People will try to take advantage of you, colleagues will lie, and business partners will let you down. The key to running a successful business is to always remain cool and calculating in these situations. Losing your head can lead you to make damaging decisions that could ultimately be harmful to your business in the long run.

Meditate

StrategyDriven Practices for Professionals Article
Photo courtesy of Max Pixel

Meditation and entrepreneurs don’t seem like great bedfellows. After all, entrepreneurs are all about living life at 100 MPH, and people who meditate, usually Buddhist monks, are interested in the precise opposite. But when it comes to entrepreneurship, meditation is actually of critical importance. The reason is that our brains tend to make new connections and come up with original ideas when our minds are clear from other worries. Many entrepreneurs like to meditate in the shower and are sometimes referred to as “urban shower monks.” Being able to get away from the mayhem often allows you to think about how you’ll deal with a difficult situation better at work.

Set Clear Parameters With Your Stakeholders

One of the biggest problems companies face is defining relationships between their partners, vendors, stakeholders and colleagues. Often these agreements can get out of hand, and you can find yourself losing out. This is why so many companies now use contract management software to stay on top of all their relationships with their customers. It allows them to make sure that all of their contracts are in the best interest of the company and easy to find. It also helps organizations that need to scale rapidly manage their risks in real time.

Be Strategic

StrategyDriven Practices for Professionals Article
Photo courtesy of Wikimedia

Command and control entrepreneurs don’t usually do all that well. They think that people are working for them because they really want to and they believe in the company, but most of the time it’s just so that they can put food on the table at night. Some business leaders think that all they have to do is tell their employees what to do by force of will and they will obey. But this isn’t how people work. Instead, interacting with people is more like a game of chess. It’s strategic, and often people will do and say things that lead to their strategic advantage. For years Donald Trump ingratiated himself with the highest echelons of society. Now he’s bringing them to their knees. It’s all about long-term planning and cunning. Think carefully about what is actually motivating the people who work for you and with you.

The Components Of A Successful Workplace

A successful workplace has a lot of factors to boast; it’s a place where an employee can get on with their work in a fast and productive manner, and it’s somewhere they fit in and know they can take on any challenge that comes their way.

After all, when you’ve got a whole team of people to keep on the straight and narrow, your office is going to need to be multifaceted and multi-cultural, in order to accommodate each and every person’s needs. And because of that, the modern workplace is a more successful operation than ever. There are more opportunities out there, and it’s easier to set up a small business of your own than ever before.

But if you’re in the boat of wanting to set up for success, and to lay a good foundation within your business dreams, it’s key to know just how many components there are in a successful workplace. With that in mind, we’ve detailed the most important below.

A Motivational Factor

Your employees need to stay motivated in order to succeed. When you have a fully motivated and driven workforce to make use of, your business is going to thrive, simply because the team behind it are always going to go the extra mile. It’s a simple facet to understand, and yet, it’s one that very few businesses make use of in the modern day and age. Make sure you’re not jumping on the bandwagon here!

But how do you go about including an ever present motivational factor? It’s simple – you look at your team as individuals, and provide incentives at all times. Because your team needs to be able to see the fruits of their labor, in real time. So update them on how marketing campaigns are going, or how many sales you’re making, and always be sure to reach out to the employees that have been instrumental in the current quarter’s success.

Celebrate their achievements, either in public or in private (depending on how well your team functions as a whole), and always ask if you can make an example of them or not. It’s good to have a case study to determine success in your other team members, but don’t be too harsh here.

An Emphasis on Communication

Communication is something every single workplace needs to hold near and dear, as it’s the only way you’re going to get a cohesive project lead at every turn. When your team members actually work as a team, and keep each other updated, and you as the boss never holds secrets from them, you’re going to have a much more productive unit on your hands. People feel included, and they like that, and they’re going to do much better at their desks as a result.

So open up the floor. Allow people to pitch in whenever they have an idea. Always keep your office door open, so people can come in and never feel like they’re interrupting you. At the same time, make good use of technology here, and provide more than one way for your team to keep in touch with one another. Project managing apps, team messaging apps, even just a simple, weekly scheduled Zoom call could do the trick here.

A Fully Functioning Workplace IoT

An IoT (or internet of things) is the term used to describe any and all connected devices used in your office. It’s a branching term for tablets, phones, computers, and even that smart fridge in the breakroom that all use the same wifi, and your IoT needs to be fully functioning at all times.

When you’ve got a properly working IoT, your staff members will be much happier during the day to day; they won’t have to deal with crashes, or lost signals, or even just slowly loading inboxes or web browsers. With a fully functioning IoT, the day moves a lot faster, people aren’t grumbling behind their screens or when they’re using an iPad to present in the meeting room, and you’ll be able to focus on the more important things in the here and now.

But how do you ensure your IoT is fully functioning, and will rarely go down? With a good amount of it support – if you don’t have an IT department within your company already, it’s time to outsource, and at least rely on a virtual call desk you can get in touch with whenever there’s a technological issue. And yes, even if the wifi is a bit slower than usual, it’s time to get in touch with your IT body!

A Comfortable Place to Work

It’s also essential that your workplace accommodates any and all types of workers, because you never know who you’re going to hire one day, and what they might want, need, or expect from the working environment around them. Simply put, if you want your workplace to be successful, you’re going to need to make it a comfortable place to work.

Sure, you need some soft furnishings and a fully stocked break room and toilet block, but you also need to think about accessibility as a bigger picture. Think about desk heights. Think about chair types. Think about the width and length of the walkways, and just how accessible the doors in and out of your building are. Think about the user interfaces on your apps. Think about the layout of your website.

Most of all, think about just how hard a disabled worker might find it to come to work and do their best for you, and make some changes, sooner rather than later.

Are You Running a Successful Workplace?

It’s easy to tell if you are or not. If your workers are happy, you’re on track to meet your goals, your staff are always talking and taking part, and you know you champion accessibility at all corners, you’ve got yourself a modern and successful workplace. And if you don’t meet these criteria, it’s always possible to change some things.

 

Top 4 Things to Keep in Mind When Developing a New Business Website

StrategyDriven Online Marketing and Website Development Article, Top 4 Things to Keep in Mind When Developing a New Business Website

No matter what your business is about, your target audience is online. People are constantly browsing the search engines and social media to find exciting brands and local businesses.

In fact, according to last year’s Local Consumer Review Survey by BrightLocal, 92% of consumers look at businesses’ websites when deciding on a business. So, the short answer to whether you need to invest in a business website is a resounding yes.

A business website will help you stay competitive, establish credibility, and take your marketing to the next level. But as you go about developing your new business website, there are some things you must ensure on your website, the four most important ones being:

Usability

First off, think of your website user’s perspective and answer these questions:

  1. Does it load fast enough?
  2. Do you find it intuitive to navigate?
  3. Do you like the look-and-feel of the site?
  4. Is the copy engaging enough?
  5. Does it look trustworthy?
  6. Is it mobile-friendly?

You must focus on creating a website that allows you to say “yes!” to all the questions above. That is, your website shouldn’t take more than three-to-five seconds to load.

Make sure your site’s design is easy to navigate and responsive (adapts automatically to the screen size on which it is loaded) while being aesthetically appealing. Also, ensure the content on your website is engaging and exciting.

NathanIves.com Designing Your Digital Products Platform Online Training Program

All these factors make up the web core vitals that Google will be analyzing on your site for its much-anticipated update in 2021. Cobiro shares that sites that do not meet the requirements the search engine powerhouse are looking for will fare badly in the SERPs once this update is rolled out. So getting ahead of the curve and taking action is the best way to get your site in line with Google’s priorities and help you to ride out the changes without your traffic being affected adversely.

What’s more, your website should also be accessible. Simply put, an accessible website is one that accommodates all visitors on all devices irrespective of the physical or mental ability of the visitor.

As website accessibility is mandated by the Americans with Disabilities Act (ADA), failing to make your website accessible makes your business vulnerable to costly lawsuits by advocacy groups. Indeed, discussions about website accessibility have increased and 2018 saw a 181% rise in Federal ADA lawsuits over 2017.

So, test your website with web accessibility evaluation tools and consider using a web accessibility software so that everyone has a great user experience on your website. You can also hire agencies like Web Integrations that build websites that are compliant with accessibility.

Ranking on the first page of Google is crucial to bringing in more business and achieving a better ROI for your website.

Search Engine Friendliness

As such, usability and search engine friendliness go hand-in-hand. Search engines like Google are quite smart. If your site delivers a great user experience, then it is already well on its way to becoming a high-ranking website.

For example, site speed, which is essential for usability, is officially a ranking factor for both mobile and desktop searches. Likewise, a poor site structure will hamper your site’s indexability by Google crawlers.

While SEO is a vast topic that needs special attention, ensure that your website is in line with these basic best practices:

  • Content, page titles, meta descriptions, and URLs should be keyword-optimized.
  • All external links must be pointing to high-quality websites, internal linking must be done properly, and there are no broken links.
  • All images should be compressed and have appropriate alt text.

In fact, search engine friendliness is also influenced by your website’s security…

Security

Needless to say, your website’s security is critical for both your business and your website visitors. A secure website serves as a safe environment for potential clients which in turn, helps boost sales.

So, don’t wait for cyberpunks to remind you of the significance of having a secure website. Make sure to have the following in mind when developing your new website:

  • Strong login credentials for better immunity against brute force attacks.
  • Up-to-date content management system (CMS) and plugins.
  • Frequent site backups, malware scans, and vulnerability tests.

Also, get an SSL certificate to secure the connection between your hosting server and your visitor’s web browser. Once an SSL certificate is in place, browsers will show a padlock sign next to your website address which indicates that all the information exchanged by the visitor on your site is safe.

In other words, an SSL certificate guards your customer’s sensitive data and is considered so important that Google uses it as a ranking factor.

So many small businesses, including SaaS startups, agency websites, blogs, and eCommerce stores fall prey to hackers every day. The last thing you want is to lose your business to a hacker, or worse, compromise your customers’ data due to a cybersecurity lapse on your part. So, prioritize security when developing a new business website.

Grammar

Yes, you read that right. If you wish to create a website that people would find credible, you can’t afford to have grammatical inaccuracies plaguing your website copy.

Sure, as a business owner, grammar may seem like a trifling matter. But make no mistake, something as simple as a spelling mistake has a big influence on your business’s credibility.

Poor grammar and frequent typos can become a major distraction for visitors, making it impossible for them to focus on the meat of the matter. It indicates a lack of professionalism and sloppiness in business practices, which would be off-putting for your site visitors and potential clients.

Therefore, see to it that every piece of content and copy on your website is grammatically flawless.

Over to You

Right off the bat, paying heed to just these four aspects of your website will most certainly result in quicker, more sustainable, and scalable business growth. And so, make sure to get them right.


About The Author

StrategyDriven Expert Contributor | Pratik DholakiyaPratik Dholakiya is the founder of Growfusely, a content marketing agency specializing in content and data-driven SEO. He regularly speaks at various conferences about SEO, Content Marketing, and Entrepreneurship. As a passionate SEO and content marketer, he shares his thoughts and knowledge in publications like Search Engine Land, Search Engine Journal, Entrepreneur Magazine, Fast Company, The Next Web, YourStory, and Inc42, to name a few. He can be reached at Twitter @DholakiyaPratik