It all starts with a phishing email

In most of our business cyber security training and work, we eventually get to the question of how cyber security defences are breached – and most often the answer is, using email.

Even the biggest cyber criminal gangs attacking the highest profile targets, just use email.

North Korean hackers attack EU targets with Konni RAT malware (bleepingcomputer.com)

This is what the North Korean gang, APT37, did to spread the malware Konni RAT (remote access trojan) to high value targets across the EU.

No sophisticated and slow hacking of the organisation’s security perimeter and then a long infiltration of servers and networks. Just a well crafted email, with a believable message, that will exploit the recipient’s trust – from there the victim will open the attachment or follow a link.