--- title: "Staff Education Goes a Long Way in Preventing Security Issues - Blogs on IT Support and Cybersecurity for Small Business" description: "Unfortunately, most attacks still come in through email, and can slip by your users. Even the most complex cybersecurity platforms used by massive corporations and governments can be foiled by a simple phishing attack, and your end-users are your las" url: "https://colemantechnologies.com/blog/staff-education-goes-a-long-way-in-preventing-security-issues" date: "2026-06-07T05:54:50+00:00" language: "en-GB" --- ## Blogs on IT Support and Cybersecurity for Small Business Insights on cybersecurity, AI, and IT strategy to help business leaders reduce risk, improve performance, and make better technology decisions. [ Categories ](https://colemantechnologies.com/blog/categories "Categories") [ Tags ](https://colemantechnologies.com/blog/tags "Tags") [ Categories: All Categories ](https://colemantechnologies.com/javascript:void(0); "Categories") Search...Suggested keywords [ x ](https://colemantechnologies.com/javascript:void(0);) # Staff Education Goes a Long Way in Preventing Security Issues [Coleman Technologies Blog](https://colemantechnologies.com/blog/categories/blog) [Security](https://colemantechnologies.com/blog/categories/security) [Coleman Technologies Admin](https://colemantechnologies.com/blog/blogger/darren-coleman) Friday, 14 June 2019 Unfortunately, most attacks still come in through email, and can slip by your users. Even the most complex cybersecurity platforms used by massive corporations and governments can be foiled by a simple phishing attack, and your end-users are your last line of defense. ## How Can an Employee Fall Victim? Phishing attacks are designed to look real. An email might come in looking like a valid message from Paypal, a bank, a vendor, or even from another employee or client. Hackers use several tricks to make the email look real, such as spoofing the address or designing the content of the email to look legitimate. Unfortunately, if the user clicks on the link in the email or downloads the attachment, they could open themselves and your company up to whatever threats contained within. Commonly, this leads to stolen sensitive information, or installs malware on the device, or grants the hacker the ability to log into the user’s bank account. While having strong IT security can reduce the amount of these [phishing](https://www.colemantechnologies.com/blog/how-not-to-teach-your-team-about-phishing-courtesy-of-godaddy/ "phishing") attacks that come in, a percentage can be tricky enough to bypass your firewalls and content filters, exposing your staff to situations that could your whole endeavor in ## Educate Your Employees It’s important to teach employees how to catch a phishing attack. We recommend sharing the following steps with your staff, or even printing them out and posting them around the office: 1. **Carefully hover (don’t click!) over links and see if they go to a legitimate URL.** If the email is from Paypal, a link should lead back to paypal.com or accounts.paypal.com. If there is anything strange between ‘paypal’ and the ‘.com’ then something is suspicious. There should also be a forward slash (/) after the .com. If the URL was something like paypal.com.mailru382.co/something, then you are being spoofed. Everyone handles their domains a little differently, but use this as a general rule of thumb: 1. paypal.com - **Safe** 2. paypal.com/activatecard - **Safe** 3. business.paypal.com - **Safe** 4. business.paypal.com/retail - **Safe** 5. paypal.com.activatecard.net - **Suspicious!** (notice the dot immediately after Paypal’s domain name) 6. paypal.com.activatecard.net/secure - **Suspicious!** 7. paypal.com/activatecard/tinyurl.com/retail - **Suspicious!** Don’t trust dots after the domain! 2. **Check the email in the header.** An email from [Amazon](https://www.colemantechnologies.com/news-events/darren-coleman-hits-amazon-best-seller-list-with-easy-prey/ "Amazon") wouldn’t come in as This email address is being protected from spambots. You need JavaScript enabled to view it.. Do a quick Google search for the email address to see if it is legitimate. 3. **Always be careful opening attachments.** If there is an attachment or link on the email, be extra cautious. 4. **Be skeptical of [password](https://www.colemantechnologies.com/blog/hey-you-update-your-google-password-right-now/ "password") alerts.** If the email mentions passwords, such as “your password has been stolen,” be suspicious. ## Phishing Simulation Another great tactic is to have regular phishing simulations. This is where we create a series of fake phishing emails (don’t worry, it’s safe), and randomly send it to your staff. When someone falls for the attack, we send them educational information to help them prevent being tricked by a real one. We’ve found this to be very effective, without taking a lot of time out of an employees already busy day. Are you interested in helping to protect your staff from falling victim to phishing attacks? Give us a call at PHONENUMBER. [ ](https://colemantechnologies.com/javascript:void(0);) [ ](https://colemantechnologies.com/javascript:void(0);) [ ](https://colemantechnologies.com/javascript:void(0);) Tags: [Education](https://colemantechnologies.com/blog/tags/education) [Network Security](https://colemantechnologies.com/blog/tags/network-security) [Staff](https://colemantechnologies.com/blog/tags/staff) [×](https://colemantechnologies.com/javascript:void(0);) Stay Informed When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them. Your Name E-mail Address [ Even Small Businesses are Targets for Hackers ](https://colemantechnologies.com/blog/even-small-businesses-are-targets-for-hackers) [ Tip of the Week: How to Utilize Your Business’ Ema... ](https://colemantechnologies.com/blog/tip-of-the-week-how-to-utilize-your-business-email) About the author [ ![Coleman Technologies Admin](https://colemantechnologies.com/media/com_easyblog/images/avatars/author.png) ](https://colemantechnologies.com/blog/blogger/darren-coleman) [Coleman Technologies Admin](https://colemantechnologies.com/blog/blogger/darren-coleman) [ ](https://colemantechnologies.com/blog/blogger/darren-coleman) Author's recent posts [More posts from author](https://colemantechnologies.com/blog/blogger/darren-coleman) [ Tuesday, 05 May 2026 Darren Coleman Featured in Boss Today on AI Literacy and Human Judgment ](https://colemantechnologies.com/blog/darren-coleman-bosstoday-ai-literacy) [ Monday, 06 April 2026 How Cloud IT Services Are Transforming Business Continuity ](https://colemantechnologies.com/blog/how-cloud-it-services-are-transforming-business-continuity) [ Monday, 06 April 2026 Darren Coleman Featured in USAWire on Why Businesses Need an AI Strategy ](https://colemantechnologies.com/news-a-events/darren-coleman-usawire-ai-strategy) ## Schema ```json { "@context": "https://schema.org", "@type": "BreadcrumbList", "itemListElement": [ { "@type": "ListItem", "position": 1, "name": "Home", "item": "https://colemantechnologies.com" }, { "@type": "ListItem", "position": 2, "name": "Blog", "item": "https://colemantechnologies.com/blog" }, { "@type": "ListItem", "position": 3, "name": "Coleman Technologies Admin", "item": "https://colemantechnologies.com/blog/blogger/darren-coleman" }, { "@type": "ListItem", "position": 4, "name": "Staff Education Goes a Long Way in Preventing Security Issues", "item": "https://colemantechnologies.com/blog/staff-education-goes-a-long-way-in-preventing-security-issues" } ] } ```