Don’t Fall for the Bait: Everything You Need to Know about Phishing

“Cyber-attacks are as common as ever and becoming more elaborate as technology advances,” says UDT Sr. Cybersecurity Manager Adonis Sardinas.

Cyber threats come in all shapes and sizes. The same goes for phishing attacks. Phishing attacks are techniques used by cybercriminals to con users/employees into revealing sensitive information or installing malware by way of electronic communication. Attackers send phony emails that appear to come from valid sources in an attempt to trick users into revealing confidential information.

Other types of Phishing:

Vishing: “Voice phishing” attackers use the telephone to solicit unsuspecting victims for personal details.

Smishing: SMS messaging attacks where attackers send phony text messages to con victims into divulging private information or infecting the victim’s phone with malware.

Social Media Phishing: Cybercriminals use social media as a channel to carry out phishing attacks armed at sealing personal information or spreading malware; some attacks are even used to hijack accounts to launch follow-up attacks on a victim’s connections or followers.

Attack methods:

Mass-scale Phishing: A type of attack that isn’t highly targeted and casts a wide net to get as much information as possible.

Spear Phishing: A targeted attack that is tailored to a specific victim, or group of victims.

Whaling: A type of spear phishing attack that attacks a high-profile victim within an organization, such as a CEO or CTO.

“Cyber-attacks are as common as ever and becoming more elaborate as technology advances,” says UDT Sr. Cybersecurity Manager Adonis Sardinas. “You’re always getting phished. The question is how aware are you to successfully spot the scams?”

Sardinas recommends the following tips and tricks:

  • Be vigilant about emails that seem impersonal or use scare tactics
  • Never download files you’re not familiar with
  • Always check a URL before you click on the link—sometimes bad links are embedded into an email as a way to trick the reader
  • Companies rarely send out messages without proofreading content, so multiple spelling and grammar mistakes can signal a scam message
  • Most companies will have a brand identity that is recognizable in their emails. Look for logos, brand colors and contact information in the message

UDTSecure can be the solution to keeping you safe from online attackers.

UDTSecure provides organizations an advanced suite of managed security and threat intelligence services and solutions to quickly detect and respond to incoming threats focused on stealing critical data or disrupting operations. Our managed security services are designed to become an extension of your operations and significantly improve your security posture.

To find out how UDT security experts can keep your data secure, Contact us

Accomplish More With UDT

Get your custom solution in cybersecurity, lifecycle management, digital transformation and managed IT services. Connect with our team today.

More to explore

IT Compliance Training for the Finance Industry (Get Your Resource Kit Now)

Download UDT’s IT Compliance Kit for financial services – empowering IT leaders to educate staff on compliance, data protection, and security.

Trend Alert! An Insider’s Look at the Latest IT Solutions for the Finance Industry

Explore the latest IT trends in finance and how UDT’s cutting-edge cybersecurity and managed IT services redefine security for the digital age.

Streamlining IT Operations in the Finance Industry—Top 10 Strategies for IT Leaders

Unleash the power of UDT and Cisco solutions with top 10 strategies to streamline IT operations for finance—enhancing security, compliance, and efficiency.

IT Leaders—Here’s Your Checklist for Disaster Recovery Planning in the Finance Industry

Equip your IT department with a disaster recovery plan checklist. Navigate unexpected technological upheavals with UDT.

The Power of Proactive Maintenance: How to Optimize Your Remote Workforce

Are you an IT leader with a remote or hybrid workforce? Maximize your organization’s success with proactive IT. Discover how a Lifecycle Services partner empowers your remote teams for peak productivity.

IT Mythbusters: Top 9 Mistakes Businesses Make With Managed XDR

Confused about Managed XDR? You’re not alone. Stop alert overload, prioritize threats, and simplify security when you optimize MXDR the right way. Learn how.

Experiencing a security breach?

Get immediate assistance from our security operations center! Take the following recommended actions NOW while we get on the case:


  1. Determine which systems were impacted and immediately isolate them. Take the network offline at the switch level or physically unplug the systems from the wired or wireless network.
  2. Immediately take backups offline to preserve them. Scan backups with anti-virus and malware tools to ensure they’re not infected
  3. Initiate an immediate password reset on affected user accounts with new passwords that are no less than 14 characters in length. Do this for Senior Management accounts as well.

Just one more step

Please fill out the following form,