Employees should be encouraged to be attentive to any anomalies and they should know who to contact in the event of a suspected breach or attack. At Point of Sale locations, instruct managers and staff members to regularly inspect credit card machines and other equipment for signs of tampering (like the attachment of card skimmers or pinhole cameras). Ask employees to be on the alert for in-person social engineering scams, where attackers attempt to gain access to sensitive data, areas, and systems.
Corporate office workers who regularly connect to email systems, servers, customer account data, corporate social media and websites, and other assets should also be on the lookout for suspicious activities. These employees should be educated about the different types of attacks they might encounter (such as phishing and DDoS attacks).