All successful compromises have one thing in common, an initial exploit. No matter how many security controls an organisation deploys, no matter how sophisticated a network, there is no way to patch human behaviour. The most significant information security risks today are human. Attackers realise that the most efficient way to gain initial access is to trick you to let them in by enticing you to click a link, download a file, execute an application, or expose a password.

Phishing attacks are most successful when the attacker can convince the victim that they already know and trust them.

BE MORE CYBER SAVVY. KEEP YOUR GUARD UP.

• Never enter your credentials into a link sent in an email that you have not initated or are not expecting even if it looks familiar
  
• Check the sender's email address and signature carefully
• When in doubt, call the sender to confirm they sent the message or if still concerned, contact help@koto.studio