Archive

Category Archives for "Phishing"

8 Tips to Help Your Employees Avoid Social-Engineering Hacks

Phishing and other related forms of socially engineered hacking are among the biggest realistic threats to business data security. No matter how cutting-edge your firewall and virus scanning software may be, one employee checking their email or responding to a customer service ticket can still ‘invite’ ransomware and worse onto your internal business network by accident.

Social engineering hacks rely on causing the ‘human error’ factor of security breaches. They trick people using fake domain names, fake accounts that look like trusted contacts, and fake scenarios that fool or scare targets into clicking on an infected link or sharing sensitive information. This means that it is vital for every employee of every modern company to understand how social engineering hacks work and take steps to active avoid getting phished. Continue Reading

Whaling and Spearfishing: Targeting the Top People

Most phishing email goes after mass targets. It’s not particularly well-crafted, but the senders expect that if they hit enough mailboxes, some victims will open the attachment or visit the malicious website. A growing portion, though, targets specific companies or individuals with carefully crafted messages. It’s called spearphishing. When it’s aimed at high-profile individuals or large assets, it’s also called whaling — going after really big fish. (All right, a whale isn’t really a fish.) Continue Reading