Implement this 3-minute internal control to prevent most cyber incidents
Email, text and phone all social engineering attacks by imposters have risen sharply recently due to AI-powered tools. Fraudster no longer need tech expertise and are using free AI tools like ChatGPT to craft targeted, personalized and believable emails, texts or phone calls.
New schemes spoof legitimate email addresses identical to your colleagues or contractors. The goal is to trick you and your employees into following a link, opening an attachment, shared file, SharePoint or DocuSign or Adobe Acrobat Sign envelope.
Other scams trick well-meaning and responsive employees into inadvertently changing bank accounts or payment remittance addresses, diverting payments to fraudsters.
The following recommended action steps should be included as part of your annual Internal Control Certification preparation. Integrating simple steps into daily operations demonstrates a strong tone from the top and internal controls. Routine reminders to staff are proven to be the best prevention for fraud incidents.
Action Steps
- Implement Pause Verify Report internal controls as part of daily operations for all employees in your department.
- Use this 3-minute video at onboarding and in regular staff meetings to highlight the most important Pause Verify Report tips for employees and the most common applications that are targeted by fraudsters.