First thing Tuesday is the most effective time to hit inboxes with bogus invoices and receipts looking to catch people unawares, according to Proofpoint’s Human Factor 2016 security report. Hackers are targeting busy people who are quickly clearing their inbox for the day ahead, hoping their attack will hit the mark before the IT team has a chance to act.
Rather than linking to sites hosting malware, three-quarters of malicious links sent last year directed their recipients to bogus pages designed to steal passwords and other credentials, says Kevin Epstein – Proofpoint’s Vice President of Threat Operations.
“Attackers target the human factor because it is so much more difficult to defend with the kinds of traditional defence – like signature and reputation-based antivirus and anti-spam – on which most organisations still rely,” Epstein says.
“People are easier to fool than machines. Anti-malware software is never too sleepy to question legitimacy, or too curious to avoid clicking.” Scammers are expanding their efforts beyond email to focus more on SMS and social media, with password-stealing “phishing” attempts 10 times more common than malware links in social media posts. While email-based scams peak in the morning, social media-based scams are more common in the afternoon as people look for distractions from their work. For the full article click here
from hacker samurai http://ift.tt/1QAdgCc
via IFTTT
No comments:
Post a Comment