Are Webinars Effective for Training Employees?

Webinars are a powerful marketing tool. They increase engagement and generate warm leads for sales. And with digital experiences becoming normalized over the past couple of years, the use of webinars is accelerating – according to the ON24 Webinar Benchmarks Report 2021, the use of webinars went up 162% last year. But what about using them internally? Are webinars effective for training employees?

When well implemented, webinars can be just as useful for employee engagement as they are at engaging your company’s external stakeholders. Let’s unpack what an effective employee training webinar looks like to understand why webinars are such an excellent choice for training.

The benefits of using webinars to train employees

Because they are online, training webinars offer both employers and employees a level of flexibility and convenience that’s not possible with traditional training.

• Your company can open up a training session to dozens – or even hundreds – of participants and offer the same level of quality for all. This is game-changing for larger companies that provide regular safety classes or other recurring training to all employees.

• Everyone doesn’t have to attend in real-time. You can make your webinar available for people to view later. This is a significant benefit for people who couldn’t be there because of a meeting or other scheduling conflict.

• Online training for new team members can save time and increase productivity. With a recorded webinar, your new hires will have a resource they can review later if they have questions or didn’t absorb all the information shared in the initial training session. This means less time wasted on new employee confusion and less stress.

What to look for in a webinar platform

• Quick polls
• Easy screen sharing
• Rich chat
• Post-webinar engagement
• Cloud recording

Webinars are a great resource when it comes to employee engagement in the post-pandemic world. If your company doesn’t already have an advanced webinar solution or if you’re looking for a more efficient option, try out YeoVoice, powered by Elevate. It has all the tools you need to empower your company to give employees an excellent training experience.

Information used in this article was provided by our partners at Intermedia.

Business leaders, how often do you think about your HR and system?

Cast your mind back to pandemic: Did you consider how your HR technology performed for your company? Did it help you manage the switch to remote working fluidly? Were your systems flexible and robust enough to handle the changing expectations of your employees?

To feel the full benefit of an HR system, it needs to satisfy your business’ growing need for information across the whole company, so you can make informed financial decisions and react to changing circumstances.

Here are three things to look for in an HR system.

1. Actionable insights

When organizations have to evolve to meet the changing needs of remote and flexible working, the ability to quickly access and interpret data is critical to teams – and it’s something that should be high up on your agenda for your new HR system.

By analyzing this data, you can find out how productive your employees are and how they’re adapting to the changes, so your HR team knows what their next steps need to be.

By switching to an HR system like Sage HRMS, teams can spot trends before they happen and keep an eye on flight risks and churn, cost-to-value ratios of new hires, and productivity statistics.

2. Increased productivity

The right HR tech gives leaders more time to focus on business-critical objectives such as strategy and communication through automation.

Your HR team benefits, and so does the rest of your workforce. By increasing the range of tasks that can be automated and simplified, a robust HR system should help to improve productivity across your entire organization. It means less time on paperwork, process, and admin – and more time on the things that matter, for your HR team and workforce alike.

Self-service is key to this. From booking annual leave to accessing company policy documents, self-service portals give any employee in your organization direct control over their HR needs.

3. HR compliance

With laws and regulations around the world constantly changing, many global organizations find themselves re-writing policies to ensure the company is compliant with employment labor and tax rules.

A global HR system could make your life much easier by standardizing and consolidating HR and People data into a single place. This will allow your teams to manage everything with a single global overview while giving you the flexibility to allow for local variations in legislation and regulation.

Furthermore, a robust HR system can seamlessly integrate with your third-party payroll software, taking the complexities out of pay and making life easier for your payroll department too.

Investing in an HR solution is a huge decision for any business. HR, IT, and business leadership will likely need to work together to make the right decision.

Looking to implement a new HR system? Contact Yeo & Yeo Technology.

Information used in this article was provided by our partners at Sage.

Many businesses have become more flexible with a mixture of office-based workers, hybrid workers, and fully remote workers.

Work doesn’t look the same as it did in 2019. And because of that, cybersecurity in 2022 doesn’t look the same either. When you have people working away from your office, you need to take additional security measures to keep your data safe.

1. Help your team secure their home routers

The router is the box that spreads the internet around the house. You might know it as the Wi-Fi box. You can give every member of your team advice and direct support to keep their router secure. Things like:

• changing default admin passwords to randomly generated long passwords;
• making sure the router’s operating system, known as firmware, is always up to date;
• and disabling remote access, so no one can change anything in the router unless they are physically on the property.

You could create a policy to make it clear that your team must follow standard security guidance for their home network if they want to work from home.

2. Make sure your systems are monitored

Your IT support partner should be monitoring your systems. That doesn’t mean having a quick check that everything is working as it should be and waiting for you to flag up any issues. It means they should constantly monitor your network 24/7, looking for anything unusual that may cause an issue—and preventing problems from escalating.

Unfortunately, cybercriminals don’t work to our schedules. They certainly don’t work a 9-to-5 job. It’s more likely that they’ll make changes when they believe no one is watching. And they may launch an attack at three on a Sunday morning to give them as much time as possible to do what they need to do. Your IT team needs to be ready.

3. Reassess your VPN

Virtual Private Networks have been invaluable over the last couple of years. But while they’ve allowed remote access to your business network, the large-scale use of VPNs has created a higher risk of a data breach. If a hacker breached a device using a VPN to get onto your network, it means they could have full access to everything without needing to pass further security measures.

An alternative option is to ditch the VPN and take a zero-trust approach. This means the credentials of every device and person trying to access the network are challenged and must be confirmed. If a hacker does gain access, they can only cause damage to the specific system they have accessed.

4. Carry out a security audit

The best way to ensure your business is protected from this kind of attack is to get a security audit. Take a look at the security you already have in place and identify what’s missing to keep your business as safe as possible without getting in the way of everyday work.

If you’re working with an IT support provider, they should already have a fully detailed account of your security systems. It’s worth asking them what weak areas they have identified and your options for improving them. An expert will assess your business and how your people work and make suggestions on the security measures that will work best for you.

Protecting your data while employees are working from home is not straightforward. However, a layered approach to security can lower your risk of an intruder getting into your business network via an unsecured home network.

Information used in this article was provided by our partners at MSP Marketing Edge.

During the period the world has dubbed “the great resignation,” phishing scammers are shifting tactics to take advantage of those looking for a new career or place of employment.

When phishing scammers are coming up with a new campaign idea, they want a brand they can impersonate that has a significant reach to improve their chances of a successful attack. With an estimated 67 million monthly active users, LinkedIn is a pretty great choice. According to new data from security vendor Egress, a significant rise in the number of attacks since February 1, 2022, impersonating LinkedIn are being seen.

The attacks use verbiage very familiar to anyone who uses LinkedIn as the subject lines:

• You appeared in 4 searches this week
• You appeared in 9 searches this week
• You have 1 new message
• Your profile matches this job

The emails come from an unassociated email address but leverage LinkedIn branding, logos, colors, etc. The links in these emails connect victims to lookalike websites intent on harvesting the users’ credentials that can later be used to impersonate the victim in future attacks on others.

Seeing an enticing “job match” email could be just the thing to catch an employee’s interest. And while the attack above only harvests credentials, we have seen others that end up infecting business endpoints. 

Don’t get hacked by social media phishing attacks!

Many of your users are active on Facebook, LinkedIn, and Twitter. Cybercriminals use these platforms to scrape the profile information of your users and organization to create targeted spear phishing campaigns in an attempt to hijack accounts, damage your organization’s reputation, or gain access to your network.

Security awareness training can enable your employees to recognize phishing and other social engineering attacks. Learn more about Yeo & Yeo Technology’s security awareness training solutions.

Information used in this article was provided by our partners at KnowBe4.

Can I print straight from my Android device?

Yes, if your printer has Bluetooth or Wi-Fi. On your phone, switch on Default Print Service in the settings. Open the file you want to print. Tap the menu (the three dots), print, and select your printer.

How do I see how much space apps are taking up?

In Windows 10 and 11 go to Settings -> System -> Storage. Tap on Cleanup recommendations to see what software you’re not using and could remove.

Does turning it off and on again really work?

Often, yes. Restarting any device allows it to refresh every process, often solving minor annoying problems.

Information used in this article was provided by our partners at MSP Marketing Edge.

The current geopolitical climate is driving ordinary cybercriminals to devise new ways to seek victims. The unrest only gives them another pretext to dangle in front of the unwary.

That’s happening right now. Avast warns that criminals have begun to exploit people’s sympathies for those in Ukraine. “As cybercriminals seek to take advantage of the chaos,” the company writes in its blog, “we have tracked in the last 48 hours a number of scammers who are tricking people out of money by pretending they are Ukrainians in desperate need of financial help. We have seen similar scams in the past for people stuck while traveling or looking for love. Unfortunately, these attackers do not operate ethically and will use any opportunity to get money out of people willing to help others in need. What’s suspicious is the immediate mention of Bitcoin, as well as the usernames that consist only of letters and numbers.”

Other criminals are hawking “UkraineTokens.” In this scam, the crooks are combining sympathy with fashion. It’s easy to imagine the marks thinking, well, we’d like to help, and didn’t we see ads for tokens or something on TV? Maybe that’s how things are done nowadays. The UkraineToken scam is relatively easy to see through since it’s marked with poor grammar and loose idiomatic control that usually distinguishes fraudulent pitches.

This kind of social engineering hasn’t been confined to any one channel, Avast points out. “There have also been reports of similar scams spreading on TikTok and other social media sites. In general, we strongly advise not to send any money to unknown people directly, especially in any form of cryptocurrency, as it is virtually impossible to deduce if it is a person in need or a scammer.”

If you’re moved to help, Avast advises doing so through well-known, credible, trusted organizations, and doing so through those organizations’ official websites, not through links shared in social media.

Are you concerned about keeping your data safe?  

Do a full assessment of your cybersecurity posture and capability, review your cyber insurance coverage, ensure your vendors are secure, and firm up your incident response plan. Regardless of the disruptions taking place in the world, these are the most prudent and impactful actions your organization can take.

Information in this article was provided by our partners at KnowBe4.

Phishing attacks on social media doubled in 2021, according to a new report from PhishLabs by HelpSystems. Most (68%) of these attacks targeted organizations in the financial sector, followed by the telecommunications sector in second place at 24%.

“According to the findings, the number of social media attacks per target increased 103% from January 2021, when enterprises were experiencing an average of just over one threat per day,” the researchers state. “In December, enterprises averaged over 68 attacks per month, or more than two per day.”

The researchers also observed a significant rise in phishing emails that attempt to trick victims into calling scammers.

• Hybrid Vishing (voice phishing) attacks initiated by email increased 554% in volume from Q1 to Q4.
• Phishing volume has grown 28% year-over-year, with half of all phishing sites observed in Q4 being staged using a free tool or service.
• Malware delivered via email nearly tripled in Q4, led by a resurgence in Qbot and ZLoader attacks.
• 70% of advertisements for stolen data took place on chat-based services and carding marketplaces in Q4.
• The percentage of attacks targeting financial institutions increased from 33.8% in Q1 to 61.3% of all phishing sites observed in Q4.

John LaCour, Principal Strategist at HelpSystems, stated that organizations’ security teams need to be aware of social engineering attacks on social media.

“2021 was another record-setting year for social media as a threat channel,” LaCour said. “Threat actors use social media to commit fraud, impersonate brands and executives, and launch a variety of cyber threats, forcing security teams to monitor a variety of platforms for activity targeting their enterprise. Financial Institutions were the most actively targeted by threat actors since their services are often used broadly across several business sectors.”

Security awareness training can enable your employees to recognize phishing and other social engineering attacks. Learn more about Yeo & Yeo Technology’s security awareness training solutions.

Information used in this article was provided by our partners at KnowBe4.

For most employees, your desk is a daily home base for meetings, focused work time and sometimes socializing. Considering you probably spend more than eight hours a day at your desk, it’s important to find a desk that fits you.

The right desk depends on each person’s workspace and body type, but one thing is universal—it should add movement and comfort. Sit-stand workstations bring ergonomics into the equation to create a comfortable space that helps maintain your health, focus and productivity.

With lots of sit-stand desks on the market, how do you decide?

• Evaluate your space. Consider how much room you can dedicate. If space is a concern, prioritize a deeper desk rather than a wider desk to keep all your desk essentials within arm’s reach. Shallow desks place your monitor too close to your face, which can cause eyestrain and bad posture.
• Full desk or desk converter? Choosing a full sit-stand desk or a converter depends on your preference. If you have a sturdy desk, a sit-stand desk converter will be a more sustainable choice since it sits on top of your current desk. A full desk gives you more surface area while standing but is often more expensive and takes up more space.
• Look for quality: A sturdy desk is the foundation of your workspace. It’s an important and often overlooked quality when customizing a working environment. You don’t want to watch your screen bounce every time you type. A stable sit-stand desk uses professional-grade materials and undergoes quality testing to ensure it’s stable after being adjusted throughout the day.

If there’s one thing to take away, make sure the desk you choose fits you and helps you work more comfortably.

Interested in learning more about sit-stand workstations? Here are two of our favorites:

Custom LearnFit Wider worksurface than the standard LearnFit Favorite for administration Sit-stand, mobile desk Available accessories: backpack hook, cupholder, storage bin	LearnFit Mobile Desk Maple worksurface Favorite for administration Sit-stand, mobile desk Available accessories: backpack hook, cupholder, storage bin

 

Information in this article was provided by our partners at Ergotron.

Spring cleaning in your home may be an annual ritual, but consider spring cleaning for your company’s systems and computers too. Read these tips — the security of your data is at stake.

Best practices for strong passwords

Now is a good time to revisit your security procedures and review your password policies. It is recommended that users choose secure passwords which are at least eight characters. Passwords should be easy to remember, but hard for others to guess. Refrain from using common phrases, personal information which is public, and repetitive passwords. Do not share passwords or give your password to anyone, even if you trust them. Below are some recommendations for acceptable-use policies for passwords in your company.

• Remove the option of using commonly used passwords.
  
  • You can limit the type of passwords users can have by “blacklisting” the following:
    • Passwords that appear on frequently used lists, including breach lists.
    • Repetitive and sequential characters, such as “1234” or “1111.”
    • Context-based words, such as characters in their username or in the name of the service being logged into.
• Use Multi-Factor Authentication (MFA)
  • MFA requires the user to know their password, as well as approve that they are attempting to login. Some forms of MFA include things you “know,” “have,” and “are.”
    • Know – You must know your password
    • Have – You must have access to your phone, or token, to approve a login.
    • Are – You must have your fingerprint (or other biometric) to approve the login.

 

The great resignation is the name economists and analysts have given to a post-pandemic surge of people leaving their jobs.

According to Microsoft, 41% of the global workforce were thinking of quitting their jobs. In reality, it means that over one-in-three of your colleagues are considering a move. That’s huge.

It suggests we’re not out of the woods yet, and people will likely continue to hand in their notices, so HR teams need to look at how they can retain their top talent and introduce initiatives that will make them want to stay now. Here are our top six ways HR and People teams can stem the exodus.

1. Keep an eye on your People data and analytics for signs of churn

First, keep your eye on the numbers. Forward-looking metrics can predict who is a flight risk and what effect it could have if they leave. Your HR and People team can then understand where the problems could arise and make contingency plans to ensure minimal impact on the business.

Look at creating interactive dashboards with your HR and People system to closely monitor the trends that matter to your organization.

2. Find out what your employees want from their workplace

Don’t guess what your employees want from their employer in this new world of work. Ask them with surveys. By asking the questions you need answers to, you’ll have the data to support your decision-making. Using data, you should find it much easier to make decisions that benefit your workforce and allow them to feel that they’re shaping the organization as it changes.

3. Encourage a healthy work-life balance

If burnout is the main reason employees are looking for greener pastures, don’t ignore it – you have the power to do something about it.

Some of the most popular ways to improve work-life balance and wellbeing during this new era of work include implementing meeting-free hours during the working day, mandating all employees take their designated holiday time, encouraging staff to take lunch breaks and start and finish on time – and, of course, looking at remote and flexible working.

At the heart of preventing burnout is also ensuring teams are well resourced, objectives are realistic and managers supportive. A lot of this comes from the tone and culture set by senior leaders in the business, so this is one thing to be very aware of.

You may also want to consider giving employees extra holiday days or an early finish on a Friday, with the implication that they use this time to maintain a healthy work-life balance.

4. Provide plenty of development opportunities

One of the many business areas that the pandemic has disrupted is career progression. A big part of the reason we see a career-switching bubble is because people are looking to make up for lost time.

Talk to your employees about their progression. How can the company support them to be even better? What do they want from their career in one-, three-, and five-years’-time? Are there any internal positions they can take to move into a job they want?

If you can offer employees the career progression and opportunities they seek, it may stop them from walking out the door.

5. Benchmark your benefits against other organizations

Ultimately, employees want to be happy in their job, but it’s important to recognize their rewards package in that, too. In a competitive job market, pay and benefits could prove the deciding factor for employee retention. Now is the time to take stock of what your company offers and compare it to your competitors.

Try scouring your competitors’ job postings to learn more about the kinds of perks and benefits they have on offer. Remember: With many employees now working remotely, you will probably need to think ‘outside the office’ when choosing new employee benefits.

6. Carefully consider your policies around ways of working

The rules around your office will have changed over the last few years. If you’re encouraging your employees to start making a move back into the office, monitor how comfortable they feel with this decision and make sure your policies reflect your stance so everyone is clear on where they stand.

For example, if your policy mandates employees to maintain social distancing and wear masks in and around the office, will your employees feel comfortable returning? Will they still think it’s too early?  You’ll also want to consider if they’ll find a move back to the office useful. It might be less helpful to return to the office if, for example, your meeting rooms then aren’t big enough to use due to social distancing. These are all factors you need to consider.

Employees come and go, but make sure they’re leaving for the right reasons

People leaving jobs is a fact of life. Whether for better pay, employee benefits, a new role or progression in their current career, or simply the opportunity to try something new, sometimes the lure of a new position is simply too strong.

If they do leave, be safe in the knowledge you’ve done the best you can to retain them, and for those who decide to go, don’t lose contact with them. With so much movement in the job market, you never know – employees who leave today may find themselves ready to come back to your organization in the future.

Understanding your people through data is key to a great workplace. Need an HR system that provides workforce analytics and employee-related insights? Check out Sage HRMS.

Information used in this article was provided by our partners at Sage.

It may seem hard to remember, but video meetings were the exception, not the rule, not long ago. Since the normalization of remote work, video conferencing has become a way of life in the business world, and that trend is not expected to change.

The problem with this is, too many video meetings cause their own set of challenges. Without video conferencing time limits and restrictions on the number of meetings, employees may start experiencing some of the adverse effects of virtual overload. Let’s look at ways to avoid overdoing it and how your organization can decide how many video meetings are too many.

How long should video meetings be?

First off, time limits. Video conferencing allows users to engage face-to-face. This is useful for reading the other person’s visual cues and gauging their emotional responses – two necessary things for good communication.

But, to get these benefits, you don’t need to have a long meeting.

Try to limit virtual meetings to 20 or 30 minutes. If you can’t fit everything into half an hour, consider breaking up the meeting topics into smaller chunks. That way, you can focus on one topic, converse, and get back to work without draining anyone.

To help you keep meetings short, create an agenda beforehand, email it to participants so they can be ready with questions or comments, and stick to the plan. Also, let everyone know how long the meeting will be so everyone is on the same page.

How many virtual meetings are okay per week?

This depends on the job role and the need to connect with co-workers or teams to keep projects and everyday operations moving smoothly. Someone in sales may need to meet with several clients each day, while your creative teams can collaborate on an as-needed basis.

The bottom line is, keep meetings to a minimum. There are a few ways you can do this:

• Use other forms of communication. With a cloud-based unified communications solution, remote teams can just as easily jump on an audio call or chat to resolve an issue or go over a topic. This connection diversity puts the power in your employees’ hands – they can decide how to communicate and use the channel that’s most suitable for them.

• Plan ahead. If your employees tend to launch impromptu video meetings whenever an issue arises, consider planning out communications at the beginning of the week. Decide what teams can cover and when, and then set time boundaries on each scheduled video conference.

• Use tools to make meetings more concise. Let employees know that they should keep presentations short. They can use screen sharing and annotation tools to quickly cover a topic or idea and help everyone get on the same page.

Get the most out of your virtual meetings

Make it easy for your remote teams to stay engaged with the right communication tools. YeoVoice, powered by Elevate, enables users to be more mobile, more productive and share ideas and content through a single business communication system. Contact our team to learn more.

Information used in this article was provided by our partners at Intermedia.

Most already know that remote workers increase the risk of cyberattacks. New data spells out the impact of a remote workforce on data breaches and the cost to remediate.

The hybrid workforce is here to stay, so it’s important to understand the ramifications to cybersecurity to better assess the risk posed. We’ve written before about how remote workers adopt bad cybersecurity habits while working from home and the increase in security threats because of remote working. But now, there is data that shows when a remote workforce is involved in causing a data breach; the results are far worse.

According to the IBM Security’s 17th Annual Cost of a Data Breach Report, the average data breach now costs $4.24 Million – an increase of nearly 10% from last year’s average of $3.86 Million. This latest version of the report takes the time to carve out the impact of having a remote workforce. According to the report:

• 5% of the data breaches involved remote workers
• The average cost of a breach was $1.07 million higher in breaches where remote work was a factor in causing it
• Organizations with more than 50% of their workforce working remotely took 58 days longer to identify and contain breaches (and it should be noted that the average number of days is 287, making this nearly a year’s time!)

Now, the answer here is not to eliminate the remote workforce. Instead, look at what’s causing the breaches and put controls and solutions in place to stop them.

According to IBM Security, the number one initial attack vector in successful data breaches is compromised credentials – something most phishing emails are after. Organizations must address these documented risks in a way that elevates the remote workforce’s security stance, regardless of the location or device they work on.

This should include Security Awareness Training to enhance the workforce’s sense of vigilance when interacting with email and the web, reducing the risk of attacks intent on compromising credentials and causing a data breach.

Learn more about Yeo & Yeo Technology’s Security Awareness Training services.

Information used in this article was provided by our partners at KnowBe4.

Phone systems are a vital piece of technology that every business needs. Communication is central to a company’s operations, customer service, and more. However, not every phone system has the same features and functionality. If you’re still using an on-premises phone system, you’re likely very aware of its limitations. As a result, you may be looking to modernize.

So, what’s the best path to do this?

In your pursuit to modernize, there are several things to consider. You want to ensure you put a new solution in place that serves you the best.

What Are Your Current Pain Points with On-Premises Phones?

Phone systems that live on-premises have many shortcomings. When thinking about the ideal platform to replace it with, document your current pain points. These could include:

• Limitations on usability beyond the office
• Challenges with adding new lines or upgrading, which may require provider intervention and high fees
• Lack of features that make it easy for end-users (i.e., hard-to-access voicemails)
• Restrictions on devices, as most on-premises solutions only work with physical phones

What Are Your Phone System Goals?

The next step is to document what a new phone system will offer you. It’s likely the answer to the pain points. These may include:

• Flexibility of use for employees no matter where they are or what device they use
• Feature upgrades that enhance usability
• Administrator control to add lines as needed
• Auto attendants to route callers based on needs
• High-quality call clarity and reliability
• Integration with other platforms
• A phone system that’s part of a unified communications(UC) platform that includes an array of tools for employees

Charting the Transition

The logistics behind modernization involve several components. First, you’ll need to define the number of users, budget, functionality, and timeline. You don’t have to be an expert in phone systems. You just need to determine your requirements.

After doing this, it’s time to find the best cloud-based phone system provider. Look for one to support your transition and deliver all the features and must-haves that your business needs.

Some assessment areas are more technical. For example, you’ll want to determine if you have sufficient bandwidth, connections at workstations, and network capabilities. Your new provider can help you through this.

Finding Your New Provider

Your current phone system provider may have a cloud-based solution. Don’t feel obligated to stay with them. Shop around to understand the differences in systems and how providers handle support, security, and reliability.

Choosing Your New Provider and Planning the Transition

Once you complete your comparison and select your new provider, it’s time to execute the transition.

There are a few things necessary in the changeover. Number porting is essential, and your new provider can assist with this. Be sure to coordinate the handoff so there’s no downtime for your phone systems.

You’ll also want to prepare your employees for the change, providing them with helpful information on when it will happen, what to expect, and resources for using the new system. Having training sessions is helpful as well.

Modernize Your On-Premises Phone System and Cut the Cord

Your on-premises phones served their purpose. They made sense years ago, but that’s not how the world works or communicates now. It’s time to cut the cord on their limitations and high costs.

Our technology professionals can help you on your journey to finding the best phone system. Contact Yeo & Yeo Technology today.

Information used in this article was provided by our partners at Intermedia.

According to KnowBe4’s latest quarterly report on top clicked phishing email subjects, Business phishing emails remain the highest-clicked category around the world. This category contains regular communication that employees might receive.

The subjects of these emails include fake invoices, purchase orders, requests for information, shared files, and more. Online Services include messages that claim to be from well-known companies and often contain spoofed domains of popular websites within the email copy.

HR-related messages could potentially affect daily work and spoof the users’ own domain with an “HR” mailbox name. The common thread is that the emails convey a sense of urgency and entice users to take action.

In Q4 2021, KnowBe4 examined thousands of email subject lines and categories from simulated phishing tests. The results are below.

Top Phishing Email Subjects:

1. Password Check Required Immediately
2. Important: Dress Code Changes
3. Vacation Policy Update
4. Important Social Media Policy Change
5. Employee Discounts on Amazon for your Holiday Shopping

Yeo & Yeo Technology can help train your employees to identify malicious emails with our security awareness training and testing.

Looking to educate your human firewall? Contact Yeo & Yeo Technology.

*Capitalization and spelling are as they were in the phishing test subject line.

**Email subject lines combine both simulated phishing templates created by KnowBe4 for clients and custom tests designed by KnowBe4 customers.

Information used in this article was provided by our partners at KnowBe4.

Cybercriminals often exploit leaked/stolen sensitive user information to perform various cyberattacks, including phishing and identity theft. The rising information leaks on dark web forums show that no one is immune to data breach incidents. According to Tenable’s 2021 Threat Landscape Report, over 40 billion records were exposed worldwide in 2021.

Tenable’s Security Response Team analyzed 1,825 data breach incidents disclosed between November 2020 and October 2021. Some 21,957 common vulnerabilities and exposures were reported in 2021, representing a 19.6% increase over the 18,358 reported in 2020.

Other key findings from the report:

• Ransomware had a monumental impact on organizations in 2021, responsible for approximately 38% of all breaches.
• 6% of data breaches were the result of unsecured cloud databases.
• Unpatched SSL VPNs continue to provide an ideal entry point for attackers to perform cyberespionage, exfiltrate sensitive and proprietary information, and encrypt networks.
• Threat groups, particularly ransomware, have increasingly exploited vulnerabilities and misconfigurations in Active Directory.
• When security controls and code audits are not in place, software libraries and network stacks commonly used amongst OT devices often introduce additional risks.
• Ransomware groups favored physical supply chain disruption as a tactic to extort payment, while cyberespionage campaigns exploited the software supply chain to access sensitive data.
• Health care and education experienced the most significant disruption from data breaches.

“Migration to cloud platforms, reliance on managed service providers, software, and infrastructure as a service have all changed how organizations must think about and secure the perimeter. Modern security leaders and practitioners must think more holistically about the attack paths within their networks and how they can efficiently disrupt them. By examining threat actor behavior, we can understand which attack paths are the most fruitful and leverage these insights to define an effective security strategy,” said Claire Tills, Senior Research Engineer, Tenable.

Learn more about Yeo & Yeo Technology’s customized cybersecurity solutions.

Source: https://cisomag.eccouncil.org/40-billion-user-records-exposed-globally-in-2021/.

Despite a drop in cryptocurrency scams in 2020 due to the pandemic, a new report highlights the massive growth in crypto scams and the profitable results they’re yielding.

Some see investing in cryptocurrency as a legitimate means to make money. So, it makes sense that scammers are looking for ways to rob their victims of cryptocurrency rather than risk breaking into bank accounts, using stolen credit card details, etc.

One of the most prevalent scams are “rug pull” scams. The main motive is to gain interest in either a bogus token that doesn’t exist or build interest in new crypto and then ditch the project after victims invest.

According to cryptoanalysis firm Chainalysis’ 2022 Crypto Crime Report, it’s these rug pull scams that account for the massive uptick in crypto scams in 2021.

In addition to rug pulls, investment scams – in which victims are promised high investment returns in exchange for putting up crypto assets they will never see again – are also rising. According to the Chainalysis data, the number of investment scams rose in 2021 by over 60%.

Most investment scams last an average of just 70 days (that’s down from 192 in 2020). Even the U.S. Securities and Exchange Commission recently put out a notice about the danger of these investment scams.

Novice and professional investors should be wary of scams that claim to make much higher investment returns. An investor’s desire to make a quick buck because they’re “in early” on new crypto likely isn’t going to pan out the way they hoped.

Protect yourself and your employees from cryptocurrency impersonation and other social engineering scams with Security Awareness Training.

Information used in this article was provided by our partners at KnowBe4.

Customer Relationship Management (CRM) isn’t new to the world of business, and businesses that tout that CRM is the “lifeline” or “backbone” of their operations are seeing benefits such as:

• Between $5.60 and $8.71 ROI for each $1 spent on CRM
• Up to a 41% increase in revenue sales for each salesperson
• Increased customer retention rates of up to 27%

How do they achieve these returns?

The answer is, businesses that place CRM at the heart of their operations use it as much more than just a tracking or data entry system.

1. Use CRM as an operations tool

Operations, or how a business engages its employees to follow business processes, is where CRM opens doors to endless value. Your CRM strategy should bring together multiple departments in an organized way.

Technically, sales, marketing, and customer service have their own processes; however, breaking apart the various processes within each functional department becomes paramount.

2. Process analysis and workflow

Bringing business processes into CRM leads to measurable improvements. Users can follow consistent processes, and operational bottlenecks are removed. More improvements – instead of allocating people to low-value tasks – can be built into the CRM’s scope when a business starts down this road.

3. Analyze how CRM can “do things better”

Break processes into granular steps, identifying clear “start” and “end” points. Where is data input or manual involvement occurring? What could be automated? Where should human input be retained for a personal touch?

From that exercise, you can see known steps that can be automated or streamlined to eliminate operational waste without risking the business’s brand, reputation, or culture.

4. Take specific action to achieve your goals

This granular thinking makes the task of selecting a CRM solution easier. You gain an understanding of features needed and – if you have captured the “business savings” data – a level of comfort on product pricing (or cost of ownership) for your business.

Delivering these new process flows – digitizing business, if you will, is only the beginning. Then, you have to measure the results of your new process flows. What KPIs will measure success, and how do you measure success? Is it an increase in customer satisfaction? Increasing revenue?

Make sure you establish these ‘win’ KPIs to paint a clear picture of your evolution to operational efficiency.

Your new CRM solution should evolve to achieve maximal results. Continue collecting feedback over time from users and implementing changes to the process to yield additional efficiency.

The journey to operational efficiency in CRM

Companies that embrace CRM and achieve measurable returns are the ones that exercise patience and consistency. Trial and error, testing, tweaking, etc., is the only surefire way to ensure a CRM unlocks the full potential of an organization.

Are you looking to implement a CRM solution? Yeo & Yeo Technology offers customizable CRM software options, including Microsoft Dynamics 365 Sales and Sage100 CRM.

Information used in this article was provided by our partners at Sage.

A report by Ermetic found that 98% of all businesses have experienced at least one breach of their data stored in the cloud over the past 18 months.

What? That’s almost all businesses.

Has yours been affected? A breach could be something as small as an employee losing a device that’s still logged into a cloud account, right up to a hacker getting full access to your data.

This is why every business should prepare an incident response checklist. It’s your way of thinking through in advance what you’ll do when a problem happens.

An incident response checklist will help you minimize damage. And recover from any breach quickly.

Here are several things that must go in your plan:

• Key people: Who will be responsible for actioning the plan? Which people will play crucial roles once the plan has been triggered?
• Internal communication: Keep a list of everyone who needs to be notified and details of how their job will be impacted.
• Alternative communication methods: If your email or VoIP goes down, how will you let your clients know there may be a service impact?
• Document: Record all the details of the issue and the actions your people have taken. This should include identifying the nature of the breach.

There’s a lot that goes into proactive business continuity and disaster planning. Yeo & Yeo Technology can help you think through all the implications and create a solid incident response plan.

Information used in this article was provided by our partners at MSP Marketing Edge.

75% of Internet Explorer and Edge browsers are out of date.

These browsers are typically updated when your operating system is updated. When you update Windows, Edge gets updated. When you update MacOS, Safari gets updated.

If you have an out-of-date browser, this either means that you’re not updating your operating system, or you’re using a browser that’s not native to your operating system (such as Chrome or Firefox).

Either way, please take a moment to check that you don’t have any updates waiting to be installed.

Running a browser that hasn’t been updated puts you at increased risk of security issues. Updates are there to keep you and your data safe. It also means your browser runs faster and gives you additional features that can help with productivity.

It’s simple to check for updates. Just go to www.whatismybrowser.com. It’ll instantly tell you at the top if you need to apply any updates.

It takes seconds to check if you’re running the latest version of your browser. Check it today and ask your team to do the same. Alternatively, contact Yeo & Yeo Technology to receive automatic updates through our managed IT service, YeoCare.

Recent events have massively shifted the HR landscape and agenda – and that’s probably an understatement.

According to Sage, 72% of HR leaders say the crisis has helped them demonstrate their value, and 57% of the c-suite now see HR as equal leadership partners.

However, HR’s newfound ownable space has come at the expense of a bigger workload, with 60% of HR leaders experiencing an increase in administrative and strategic tasks.

To meet the needs of tomorrow, HR leaders must look for newer, more agile ways of managing their people so that their workforce can flex and align to shifting priorities.

That’s where HR technology comes in. The right HR tech is vital in supporting HR’s new agenda, enabling HR leaders to deliver actionable insights, provide and utilize trusted up-to-the-minute data, reduce admin, and create great employee experiences that attract and retain the best talent.

If you’re also looking to invest more in HR tech and on the search for a new HR system, it’s important to find the right one that supports your HR team and employees, too.

There are 5 things HR leaders should look for in an HR system:

Focus on tech that supports great workforce experiences

Organizations thrive when employees are engaged.

To do this, you need to create the best possible experiences for them – keeping them connected, informed, and aligned. This is where tech can add real value.

Look for an HR system that puts your employees and their experiences first, so they can view and amend personal data, make requests for leave, and access company information through an employee self-service portal.

You’ll also want to find a system that supports your HR team with flexible pulse surveys and continuous conversation tools and provides you with data-driven insights to understand employee sentiments in real-time.

Consider how you can get the best workforce visibility

The days of spreadsheets and disparate systems should be far behind us, but unfortunately, many organizations still rely heavily on them to get glimpses into their workforces’ behavior.

It leaves HR leaders trying to pick numbers out of a sea of data making guesses about their workforce rather than making informed choices based on data.

The right HR tech means HR leaders can achieve a complete picture of their workforce through one system with up-to-the-minute, reliable data using built-in analytics.

It means HR leaders can understand what drives their workforce, who the top performers are, which teams struggle with productivity and how long it takes them to hire great talent. It means you can also take these insights straight to the c-suite, providing them with the top figures they want to see.

Find tech that benefits all

One of your measures of success from an HR system will be return on investment, which starts with user adoption.

In an ideal world, you’d want 100% of your workforce using your brand-new HR system so, to do that, you’ll need a user-friendly system that has a similar experience to apps they already use at home and outside of work.

Equally, for you as an HR leader, you don’t need a system that takes hours to figure out how to use and then more hours training everyone else, so finding tech that’s easy to use is key to success.

Boost business resilience with flexibility

Just 29% of HR leaders told Sage they were organized for speed, agility, and adaptability – and that was before the global pandemic. In reality, it means that just one in three HR leaders were well equipped to act when the pandemic hit.

Finding more agile ways of working is key in surviving and thriving in this new landscape of business. Look for a highly flexible system that will allow you to easily configure workflows, create custom fields, and tailor reports, communication, branding, and more, all managed by you through clicks, not code.

Create great experiences for all with HR tech

Ultimately, no matter what HR software you settle on, it should be there to support you as HR, but most importantly, your people. By recognizing what your people need from an HR system, it’ll help you choose the perfect solution for your organization, so you can deliver on all the points we’ve discussed and so much more.

Information used in this article was provided by our partners at Sage.