One of the frequent attacks, according to Kaspersky, is Business Email Compromise through phishing methods. Hackers will be able to access users' emails through the attack.
Of course it is dangerous if the email contains sensitive data, such as the company's financial statements.
"In some cases, careful study of financial statements may also provide opportunities for stock exchange manipulation," said Roman Dedenok, a security expert at Kaspersky.
To prevent this from happening, Kaspersky recommends that the following emails be deleted from the mailbox immediately, are as follows:
1. Authentication data
Some companies still send passwords via email when employees are about to reset their passwords to log in to the work page.
Employees also often send login information and passwords. Messages like this become the target of hackers. The reason is, get additional to do social engineering and launch other attacks.
2. Online service notifications
Usually you will get notifications from social media followed and also when resetting the password.
At first glance a message like this is not interesting, however, for an email hacker like that shows what services the victim uses.
In many cases, hackers will ask for a password change on the service so that the victim will lose access to his account.
3. Personal documents
Kaspersky recommends immediately deleting email messages such as cloud storage to store personal data such as passports, identity cards, tax payments or other documents related to work or business travel.
4. Business documents
Email became a place to exchange corporate documents with colleagues and was very attractive to hackers.
Financial statements can be an entry for cybercriminals to launch other attacks against companies.
5. Other people's personal data
Emails sometimes store other people's personal data such as CVs and registrations.
Delete such messages not only from your inbox, but also from the sent messages folder and deleted messages.
For security reasons, use an additional layer of security such as turning on two-step authentication on email.