What, if any, steps are you taking to remind employees about the popularity of malware disguised as X-mas greetings?

hughye

There is a long and glorious history of Christmas theme malware, some benign, some not so much. Are you taking any steps to remind people not to relax their normal skepticism on "Click HERE!" when there is a elf or Ms. Clause theme to it? Every bloody year someone here manages to install malware around Christmastime. Is it worthwhile to remind folks about these threat vehicle, or am I going to just going to sound like the IT Scrooge?

Topic: Security
Answer this Question

Answers

1 total
jimlynch
Vote Up (14)

I don't think you sound like a scrooge at all. It makes sense to send out an email reminder or two during this season. Many employees get caught up in the flow of their work day and may not be thinking of the dangers inherent in malware.

So perhaps a reminder at the beginning and mid-way through the season might be a good idea? You could include updates about current threats and an example or two of previous threats (and their consequences) that would encourage people to be careful.

You know what they say, an ounce of prevention is worth a pound of cure.

Ask a question

Join Now or Sign In to ask a question.
A modified version of Android uses a system of modularized plugins to help make sure the latest security tools make it into the hands of end users as quickly as possible.
The UPS Store said Wednesday that malicious software was found on the systems of 51 of its franchises in 24 U.S. states, although no fraud has been detected yet.
Start-up SentinelOne is offering security software for behavior-based malware detection intended to augment, not replace, the type of full anti-virus endpoint protection suites that typically also have signature-based defense, a firewall and other features.
A type of malware called Reveton, which falsely warns users they've broken the law and demands payment of a fine, has been upgraded with powerful password stealing functions, according to Avast.
An analysis by security researchers of 48,000 extensions for Google's Chrome browser uncovered many that are used for fraud and data theft, actions that are mostly undetectable to regular users.
University and vendor researchers are congregating in San Diego this week at USENIX Security '14 to share the latest findings in security and privacy, and here are 5 that jumped out to me as being particularly interesting.
Nearly all of Facebook's outbound notification emails are now encrypted while traveling the Internet, a collaborative feat that comes from the technology industry's push to thwart the NSA's spying programs.
Many former employees retain alarming levels of access to critical business applications after they've stopped working for a company, a survey for cloud services firm Intermedia has claimed.
Symantec will consolidate its cluttered Norton line of security software, folding nine products into one online service that can be used across desktop computers and mobile devices.
The theft of personal data on 4.5 million patients of Community Health Systems by hackers in China highlights the increasing degree to which hospitals are becoming lucrative targets for information theft.
randomness