Google works hard to help protect against phishing attacks—from using machine learning, to tailoring detection algorithms, to building features to spot previously unseen attacks. While they block as many external attacks as they can, they continue to build and offer features designed to empower IT administrators to develop strong internal defenses against phishing.
Here are seven things they recommend admins do in G Suite to better protect employee data.
1. Enforce 2-step verification
Two-step verification (2SV) is one of the best ways to prevent someone from accessing your account, even if they steal your password. In G Suite, admins have the ability to enforce 2-step verification. 2SV can reduce the risk of successful phishing attacks by asking employees for additional proof of identity when they sign in. This can be in the form of phone prompts, voice calls, mobile app notifications and more.
G Suite also supports user-managed security keys—easy to use hardware authenticators. Admi...
A password is only as secure as the computer or network it is used on. As such, never log in to a sensitive account from a public computer, such as computers in a cyber cafe, hotel lobby or conference hall. Bad guys target public computers such as these and infect them on purpose. The moment you type your password on an infected computer, these cyber criminals can harvest your passwords. If you have no choice but to use a public computer, change your password at the next available opportunity you have access to a trusted computer.