IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Slack adds verification feature to combat phishing scams

Security updates for Slack Connect will help to legitimise contacts and ward off would-be scammers

Slack has announced a slew of new security features, certificates and integrations, including a verification system that adds an additional layer to protect against phishing scams.

The announcement follows on from Slack Connect, launched in June, which allows organisations to create shared channels with other companies. This is the company's big play in its attempt to move people away from email, where phishing and ransomware scams have increased.

For Slack Connect, the company is adding a verification system that shows the legitimacy of a contact - similar to Twitter's blue ticks, or the padlock symbol on Google Chrome.  

"It's always a challenge for us to give customers everything they need to feel comfortable sharing their data with Slack," the firm's CISO Larkin Ryder told IT Pro.

"But right now people are especially concerned. Moving from the office environment to remote work means that there is a whole new set of risks that every CISO is thinking about."

During the pandemic, there were a number of reports suggesting that coronavirus-related phishing scams were on the rise - the UN reported a 350% increase in the first quarter of 2020. Slack has taken preventative steps to combat this on its Connect service, where would-be scammers could potentially pose as clients and infiltrate Slack channels.

The company is also adding a feature called 'Information Barriers', which can block communications between specific users within the same organisation to avoid conflicts of interest.

There is also a new enterprise key management (EKM) for the Workflow builder, which provides full encryption to all data added to the service, including form data and search queries. The EKM will also be available for Slack Connect.

Finally, Slack has also achieved FedRAMP moderate authorisation, which is a US government standard for cloud service providers.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

Cloud security market to hit $106 billion by 2029
cloud computing

Cloud security market to hit $106 billion by 2029

11 Apr 2022
Education and government most at risk from email threats
phishing

Education and government most at risk from email threats

26 Nov 2021
Attackers use CSS to fool anti-phishing systems
phishing

Attackers use CSS to fool anti-phishing systems

11 Nov 2021
Alkira offers Check Point CloudGuard Security to secure virtual cloud networks
Cloud

Alkira offers Check Point CloudGuard Security to secure virtual cloud networks

29 Sep 2021

Most Popular

Actively exploited server backdoor remains undetected in most organisations' networks
cyber attacks

Actively exploited server backdoor remains undetected in most organisations' networks

1 Jul 2022
Macmillan Publishers hit by apparent cyber attack as systems are forced offline
Security

Macmillan Publishers hit by apparent cyber attack as systems are forced offline

30 Jun 2022
Former Uber security chief to face fraud charges over hack coverup
data breaches

Former Uber security chief to face fraud charges over hack coverup

29 Jun 2022