There's no need to elaborate on the risk of email hacking. Without question it's the fastest growing type of threat Foojee has witnessed across our client base in the past few years. Needless to say, regardless if you’re using an Apple or Microsoft product, this threat affects everyone. What's worse, email hacks are just the beginning of the attack. Typically the email hack leads the hacker to your address book, financial information, or bank information, and further uses these assets to hack others in your circle, like employees, vendors, or clients.

While the tools below are often brought up in 1-on-1 conversations with you, I thought it would be good to write a succinct outline to share how we're addressing these risks. Not all of these are free or included with your Foojee Service Plan, so if you're unsure which of these protections you have for your organization, just schedule a call with your City Leader, and we'll take a look.

As with many security threats, the act of hacking an email account can involve multiple steps, via multiple vectors, and protections exist for each. Some of these are included in the Foojee Service Plan.

  1. Foojee Phishing Training mitigates the biggest risk of all: user awareness.
    Our security awareness training uses video lessons and online quizzes to keep everyone informed of the latest tactics. In addition to training, we send phishing simulation campaigns to help reinforce their lessons.

  2. Multi-factor Authentication (MFA or 2FA) to prevent unauthorized access, even if your password is stolen. We've likely enforced this on your entire organization's email accounts. It's free, and just takes some coordination with your team to implement. Doing this properly addresses 95% of the risk.

  3. Foojee Web Security protects your devices from visiting fraudulent websites that are masquerading as real login websites. Many hacks begin with an invitation to login to a fake website, and these fake websites are getting better at looking real. However if you have Foojee Web Security, which is based on a Cisco product called Umbrella, your web browsing is being protected by a state-of-the-art safety filter.

  4. Foojee Dark Web monitors the dark web for compromised credentials. In the event an employee enters a password into a fraudulent website, or a company like T-Mobile or Equifax gets compromised, Foojee's Dark Web service will notify us if that data appears in public, so we can help your employee reset any accounts that have been compromised.

  5. Foojee Spam Filter uses machine learning and custom filters that go beyond your email company's built in spam protection. If you want to batten down the hatches, or if your organization has already experienced phishing, we recommend going a step further beyond traditional spam protection, and implementing a third party spam protection. It's just a few dollars per month per person, and adds a significantly stronger layer of customizable protection.

  6. Local antivirus / EDR protection for your Mac. While malware and ransomware is far less prevalent on the Mac, it does exist. Some malware is used to track keystrokes, and allow an attacker to learn your login passwords for multiple accounts. So having a proper EDR protection (which is the latest generation of anti-virus protection) is our tool to mitigate risks that could be running on your Mac.

These six tools are part of our vision. We spend countless hours testing the right approach to each risk, and we're honored to show up everyday to make your IT better, and to reduce your risks. If you're unsure of which of these tools you have, just schedule a quick 15 minute call with your City Leader, and we’ll take a look.

-Lucas