Security News > 2020 > January > 5 tips to avoid spear-phishing attacks
As you can imagine, the way the hackers got in is supposed to have been by means of phishing attacks.
The good news is that most of us have learned to spot obvious phishing attacks these days.
The bad news is that you can't reliably spot phishing attacks just by watching out for obvious mistakes, or by relying on the crooks saying "Dear Customer" rather than using your name.
You need to watch out for targeted phishing, often rather pointedly called spear-phishing, where the crooks make a genuine effort to tailor each phishing email, for example by customising it both to you and to your company.
DO CONSIDER PHISHING SIMULATIONS. Products like Sophos Phish Threat can expose your users to the sort of tricks that spear-phishers use, but in safety so that if they do fall for it, no real harm is done.
News URL
https://nakedsecurity.sophos.com/2020/01/17/5-tips-to-avoid-spear-phishing-attacks/
Related news
- Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack (source)
- Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations (source)
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)
- Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials (source)
- DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks (source)
- GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)