Black Friday Shopping
Shopping experience without a nasty receipt
A comment from Oliver Cronk, Chief IT Architect, EMEA, at Tanium
Black Friday and Cyber Monday are just around the corner and pose a variety of challenges for companies in terms of cyber threats. The big shopping weekend, which traditionally follows Thanksgiving in America, has become increasingly established in Germany in recent years and is now an integral part of the calendar of many bargain hunters. So it is not surprising that Black Friday is known by 96 percent of online shoppers, according to the German Retail Association (HDE), and sales of around 4.9 billion euros are forecast this year.
Given these figures and the enormous popularity of this shopping action day, companies must be especially careful: cybercriminals will use these events for countless attacks on people who could fall for phishing emails. Typical tricks on such occasions are fake discount campaigns or fake marketing emails that look deceptively similar to real ones. In this way, the victims should be tempted to click on a malicious link in an email.
In order not to fall victim to such online scams, companies must ensure that their employees know everything they need to know about the expected cyber threats and receive appropriate training. This is all the more true because parts of the workforce are likely to work from home and will also use the laptops they use for professional purposes for private purchases. Employees should also be encouraged to follow email security best practices, such as hovering over URLs to verify their authenticity, and always manually entering the addresses of trusted websites whenever possible.
In order to ensure the IT security of the company, especially on days such as Black Friday, when many work equipment is also used for private purposes, it is advisable to invest in an all-encompassing endpoint management strategy. Because it is often not sufficiently secured endpoints that pose the greatest risk to corporate security. With this proactive approach, companies can pursue a preventive strategy that can identify security risks before a serious attack even occurs. IT teams can take precautions to ensure that their hybrid workforces are well prepared and protected. Then you have a good chance that only minimal damage will occur if a security breach should occur.