{"id":13678,"date":"2025-10-20T16:20:49","date_gmt":"2025-10-20T15:20:49","guid":{"rendered":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/?p=13678"},"modified":"2025-10-20T17:24:43","modified_gmt":"2025-10-20T16:24:43","slug":"phishing-awareness-protecting-yourself-and-your-organisation","status":"publish","type":"post","link":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/","title":{"rendered":"Phishing Awareness: Protecting Yourself and Your Organisation"},"content":{"rendered":"\n<p>Cybercriminals are becoming increasingly sophisticated, leveraging technologies such as AI to create highly convincing scams designed to deceive individuals more effectively. These attacks attempt to trick employees into revealing sensitive information, such as passwords or financial details, by pretending to be legitimate sources. Phishing attacks remain the biggest cybersecurity threat we face organisations today as they continue to be the most common way criminals steal sensitive information, compromise accounts, and gain access to our systems. As an employee, your vigilance is crucial in safeguarding &nbsp;personal and company sensitive data. Here\u2019s what you need to know to protect yourself and organisation from phishing attempts.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"h-understanding-phishing\"><strong><strong>Understanding Phishing<\/strong><\/strong><\/h2>\n\n\n\n<p>Phishing is a form of cyber-attack where attackers use emails, text messages, or phone calls to deceive individuals into providing confidential information. These messages often appear to come from a trusted entity, such as a manager, a bank, or even a well-known company.<\/p>\n\n\n\n<p><strong>Phishing attacks can take different forms, including:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Email Phishing \u2013 Fraudulent emails containing links to malicious websites or attachments with malware.<\/li>\n\n\n\n<li>Spear Phishing \u2013 Targeted attacks directed at specific individuals within an organisation.<\/li>\n\n\n\n<li>Whaling \u2013 Aimed at high-profile targets such as executives and senior management.<\/li>\n\n\n\n<li>Smishing and Vishing \u2013 Phishing attempts conducted via SMS (smishing) or voice calls (vishing).<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-how-to-protect-yourself-and-your-organisation\"><strong>How to Protect Yourself and Your Organisation<\/strong><\/h3>\n\n\n\n<p><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Check Egress banners \u2013 Use banners to help guide you in determining the authenticity of the email.<\/li>\n\n\n\n<li>Verify the Sender \u2013 Always check the sender\u2019s email address carefully. If in doubt, contact the sender directly using a known and trusted method.<\/li>\n\n\n\n<li>Think Before You Click \u2013 Do not click on links or download attachments from unexpected or suspicious emails.<\/li>\n\n\n\n<li>Report Suspicious Emails \u2013 If you receive a suspected phishing email, report it to your IT or security team, or use your organisation\u2019s reporting tools such as clicking \u2018Report Phish\u201d button in your Outlook ribbon.<\/li>\n\n\n\n<li>Enable Multi-Factor Authentication (MFA) \u2013 GSMA has enabled Okta multi-factor authentication on all corporate systems and platforms.<\/li>\n\n\n\n<li>Keep Software Updated \u2013 Ensure that your operating system, email client, and antivirus software are up to date to protect against malware. If prompted to update and reboot, do so at a convenient moment.<\/li>\n\n\n\n<li>Stay Educated \u2013 Participate in regular security awareness training to stay informed about the latest phishing techniques.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-what-to-do-if-you-fall-victim\"><strong>What to Do If You Fall Victim<\/strong><\/h3>\n\n\n\n<p>If you suspect you\u2019ve fallen for a phishing attack, act quickly:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Report it immediately to your IT or click \u2018Report Phish\u201d button in your Outlook ribbon.<\/li>\n\n\n\n<li>Change your passwords if you have entered your credentials on a fraudulent site.<\/li>\n<\/ul>\n\n\n\n<p><strong>Understanding and Preventing Social Engineering Attack<\/strong><\/p>\n\n\n\n<p>Social engineering is the practice of manipulating individuals into revealing information or performing actions that compromise security. Think of it as a con artist\u2019s toolkit, applied in the digital world.<\/p>\n\n\n\n<p><strong>Examples include:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Phishing emails that trick you into clicking malicious links or sharing login details.<\/li>\n\n\n\n<li>Phone calls or text messages posing as IT support, vendors, or even leadership.<\/li>\n\n\n\n<li>Impersonation on collaboration platforms or social media.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-why-social-engineering-is-so-dangerous\"><strong>Why Social Engineering Is So Dangerous<\/strong><\/h3>\n\n\n\n<p>Unlike malware or system exploits, social engineering doesn\u2019t rely on flaws in software &#8211; it relies on us letting our guard down. Even the most security-savvy organisations can be put at risk if just one employee is deceived.<\/p>\n\n\n\n<p><strong>Recent incidents across industries have shown that a well-designed phishing campaign or impersonation attempt can lead to:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Unauthorised access to sensitive company data.<\/li>\n\n\n\n<li>Theft of intellectual property or trade secrets.<\/li>\n\n\n\n<li>Financial fraud or fraudulent payments.<\/li>\n\n\n\n<li>Significant reputational damage.<\/li>\n\n\n\n<li>Breach of sensitive personal information.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"h-how-you-can-help-stay-vigilant\"><strong>How You Can Help &#8211; Stay Vigilant<\/strong><\/h3>\n\n\n\n<p>Security isn\u2019t just the responsibility of IT and security teams &#8211; it\u2019s part of everyone\u2019s daily role. Here are some practical ways to protect yourself and your organisation:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Pause before you click. If an email or link seems unexpected, double-check before engaging.<\/li>\n\n\n\n<li>Verify requests through trusted channels. If you receive an urgent message asking for credentials, payments, or sensitive information, confirm it by phone or in-person with the requester.<\/li>\n\n\n\n<li>Watch for red flags. Spelling errors, unusual tone, or odd formatting are common in phishing attempts.<\/li>\n\n\n\n<li>Guard your credentials. Never share passwords, multi-factor authentication codes, or system access with anyone. No one legitimate will ever ask for them.<\/li>\n\n\n\n<li>Report suspicious activity. Forward questionable emails or incidents to \u00a0your IT or security team &#8211; it\u2019s better to be cautious than to assume.<\/li>\n\n\n\n<li>Be cautious about oversharing. Details about projects, planned absences, or team structures posted publicly can help attackers craft convincing scams.<\/li>\n<\/ul>\n\n\n\n<p><strong>Our Collective Responsibility<\/strong> As technology and AI advance, so too will the methods used by cybercriminals. Our most effective defence is fostering a culture of vigilance, where every employees approaches unexpected digital interactions with a cautious and questioning mindset.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cybercriminals are becoming increasingly sophisticated, leveraging technologies such as AI to create highly convincing scams designed to deceive individuals more effectively. These attacks attempt to trick employees into revealing sensitive information, such as passwords or financial details, by pretending to be legitimate sources. Phishing attacks remain the biggest cybersecurity threat we face organisations today as [&hellip;]<\/p>\n","protected":false},"author":55,"featured_media":13680,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","footnotes":""},"categories":[1505],"tags":[],"algolia_discover_type":[],"class_list":["post-13678","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-latest-news"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.3 (Yoast SEO v24.3) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Phishing Awareness: Protecting Yourself and Your Organisation - Security<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Phishing Awareness: Protecting Yourself and Your Organisation - Security\" \/>\n<meta property=\"og:description\" content=\"Cybercriminals are becoming increasingly sophisticated, leveraging technologies such as AI to create highly convincing scams designed to deceive individuals more effectively. These attacks attempt to trick employees into revealing sensitive information, such as passwords or financial details, by pretending to be legitimate sources. Phishing attacks remain the biggest cybersecurity threat we face organisations today as [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/\" \/>\n<meta property=\"og:site_name\" content=\"Security\" \/>\n<meta property=\"article:published_time\" content=\"2025-10-20T15:20:49+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-10-20T16:24:43+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/10\/GettyImages-2198390582.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"724\" \/>\n\t<meta property=\"og:image:height\" content=\"483\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"phau@gsma.com\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"phau@gsma.com\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Phishing Awareness: Protecting Yourself and Your Organisation - Security","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/","og_locale":"en_GB","og_type":"article","og_title":"Phishing Awareness: Protecting Yourself and Your Organisation - Security","og_description":"Cybercriminals are becoming increasingly sophisticated, leveraging technologies such as AI to create highly convincing scams designed to deceive individuals more effectively. These attacks attempt to trick employees into revealing sensitive information, such as passwords or financial details, by pretending to be legitimate sources. Phishing attacks remain the biggest cybersecurity threat we face organisations today as [&hellip;]","og_url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/","og_site_name":"Security","article_published_time":"2025-10-20T15:20:49+00:00","article_modified_time":"2025-10-20T16:24:43+00:00","og_image":[{"width":724,"height":483,"url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/10\/GettyImages-2198390582.jpg","type":"image\/jpeg"}],"author":"phau@gsma.com","twitter_card":"summary_large_image","twitter_misc":{"Written by":"phau@gsma.com","Estimated reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/","name":"Phishing Awareness: Protecting Yourself and Your Organisation - Security","isPartOf":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/#primaryimage"},"image":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/#primaryimage"},"thumbnailUrl":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/10\/GettyImages-2198390582.jpg","datePublished":"2025-10-20T15:20:49+00:00","dateModified":"2025-10-20T16:24:43+00:00","author":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#\/schema\/person\/d5f2edfe4e539b3d59776c30df030bbe"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/latest-news\/phishing-awareness-protecting-yourself-and-your-organisation\/#primaryimage","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/10\/GettyImages-2198390582.jpg","contentUrl":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/10\/GettyImages-2198390582.jpg","width":724,"height":483,"caption":"Mid-adult business woman, sitting in a restaurant, drinking coffee and typing on the phone. She is dressed elegantly."},{"@type":"WebSite","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#website","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/","name":"Security","description":"GSMA Security","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Person","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#\/schema\/person\/d5f2edfe4e539b3d59776c30df030bbe","name":"phau@gsma.com","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/5ecee0da5df233cb3e8fbbe640a36de3?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/5ecee0da5df233cb3e8fbbe640a36de3?s=96&d=mm&r=g","caption":"phau@gsma.com"}}]}},"featured_image_url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2025\/10\/GettyImages-2198390582.jpg","_links":{"self":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts\/13678","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/users\/55"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/comments?post=13678"}],"version-history":[{"count":1,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts\/13678\/revisions"}],"predecessor-version":[{"id":13681,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/posts\/13678\/revisions\/13681"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/media\/13680"}],"wp:attachment":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/media?parent=13678"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/categories?post=13678"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/tags?post=13678"},{"taxonomy":"algolia_discover_type","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/algolia_discover_type?post=13678"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}