Phishing Attacks, Account Takeovers Big Threat to Businesses on Social Media: Karmendra Kohli

The biggest cyber security threats facing businesses on social media today include phishing attacks, account takeovers, malware distribution, brand impersonation, reputation damage, data leakage and so on.

On Social Media Day today, Karmendra Kohli, CEO and Co-Founder of SecurEyes in an exclusive interview with NewsExperts talks about how businesses can protect themselves from Cyber security threats on Social Media. SecurEyes, is a pure-play cybersecurity consulting, services, and products company that also provides cybersecurity training and education

News Experts: What are the biggest cybersecurity threats facing businesses on social media today?
Karmendra Kohli: The biggest cybersecurity threats facing businesses on social media today include phishing attacks, account takeovers, malware distribution, brand impersonation, reputation damage, data leakage and so on.

Sensitive information theft, compromised accounts, reputational damage, and data breaches are all possible outcomes of these dangers. Businesses should put in place robust security measures, inform staff of the hazards, and frequently check their social media accounts for suspicious activity to handle these threats.

NE: How can businesses protect themselves from these threats?
KK: Businesses may protect themselves from threats by putting in place strong cybersecurity measures including firewalls, antivirus software, and employee training. They must set security rules, secure their network infrastructure, back up data on a regular basis, and undertake risk assessments.

It is critical to have strict access controls, monitoring systems, and an incident response plan in place. The most important tool against attacks originating from Social Media is education and awareness across the organization. Businesses may proactively defend against potential threats by staying educated about cybersecurity trends and constantly updating security procedures.

NE: What are some of the unique features of SecurEyes that make it a valuable tool for business / people who use social Media platforms?
KK: SecurEyes provides customised trainings and security awareness programs to enhance the security awareness among employees of the organizations. This ensures they are aware and can protect themselves and the organization against cyber frauds and other security threats posed by adversaries using social media.

Apart from the Awareness programs, SecurEyes also performs phishing assessments to evaluate the awareness levels of employees, thus enabling organizations to measure the effectiveness of the awareness programs and enhance them accordingly.

NE: How does SecurEyes help businesses comply with social media regulations?
KK: SecurEyes helps businesses design and implement stringent social media policies and privacy frameworks taking into account any relevant applicable regulations.

SecurEyes also performs detailed assessments of the implemented social media policies and evaluates the effectiveness of the security controls deployed by businesses and provides assurance against threats posed by adversaries using social media.

SecurEyes additionally performs Red teaming assessments and phishing simulations mimicking the attacks performed by adversaries who use social media to defraud employees.

All of the above, help businesses mitigate risks which may arise due to use of social media.

NE: What are some of the success stories of businesses that have used SecurEyes?
KK: SecurEyes has worked with various organizations across the globe in enhancing their security posture by helping them design, develop, implement, and assess various security frameworks.

SecurEyes has helped clients manage and mitigate risks arising from use of social media across various industries like Airlines, BFSI and, Govt. Sector. The customised awareness programs include creating infographics such as emailers, posters, handbooks, quizzes and games for employees to enhance the cybersecurity awareness which in turn reduces the phishing and other social engineering incidents in that organization. Customized Social Engineering simulation exercises have helped organizations in recognising the weaknesses and improving their defences against such attacks.

SecurEyes has also performed detailed security assessments in various organizations across multiple geographies and industry sectors, to identify and mitigate potential cyber attacks using social media platforms.

NE: What are your plans for SecurEyes in the future?
KK: SecurEyes recognizes the massive digitization and increased social media exposure of organizations and its employees and the threats that arise due to the same.

In the future SecurEyes intends to extend the reach of its services by designing and offering specialised training programs to enable organizations balance the use of social media to grow their business and their exposure to cyber threats. SecurEyes is also focusing on using newer technologies like AI and newer techniques such as gamification, to create relevant cybersecurity awareness programs and also to simultaneously simplify and enhance the user experience of these programs.

NE: What advice would you give to businesses / people who use social Media platforms that are looking to improve their cybersecurity?
KK : Here are some tips to improve cybersecurity on social media platforms:
· Enable two-factor authentication and use strong, unique passwords.
· Watch out for phishing scams and shady links.
· Always verify before clicking on links
· Continue to update software and programmes.
· Inform users and staff about cybersecurity.
· Be cautious about sharing private information on social media.
· Regularly review and modify privacy settings.
· Keep an eye out on social media accounts for odd behaviour.
· Regularly backup your social media data.
· Follow the all recommended policies and procedures.
· Use social media responsibly and alert the authorities of any questionable conduct.

NE: How can social media be used to promote cybersecurity awareness?
KK : Social media is an effective method for raising public awareness of cybersecurity issues. It can be used to disseminate informational materials, advice, and updates regarding cybersecurity threats and best practises. To effectively engage consumers and propagate the message, awareness campaigns, challenges, and partnerships with specialists are used. By holding Q&A sessions, distributing case studies, and sharing success stories, cybersecurity measures are made important.

Social media may promote proactive online security by encouraging user interaction, reminding users frequently, and actively responding to comments. This will enable people to better secure themselves online.