Cybersecurity Starts in the Boardroom
Just because it is me, I am going to start this Back-to-Basics mini-series by not talking about phishing emails but looking at a key component of a malicious email attack – social engineering. So what is Social Engineering? In its most basic form, it is the advertising we are all …
Continue reading “Phishing Primer – Social Engineering (pt. 1)”
“Beacuase It’s Friday” has been published for this week – Because It’s Friday – Electronic Mail | Smart Thinking Solutions – but as I was reading the cyber security news this morning this page came up on my BBC News feed. A BBC Newsround report from 1992 about the Michelangelo …
First let’s get a definition of social engineering: Social engineering is the art of manipulating people to give up confidential information. The types of information compromised can vary, but when organisations are targeted, the criminals are usually trying to trick you into giving them your credentials for secure systems you …
Continue reading “Social Engineering is real and costs organisations money – get your team trained.”
For those of you of a certain age, do you remember when we went from plain text email to rich content html emails? Of course, by rich content I mean some bold and italic text and some images! Here is a new attack using old technology – called Kobold Letters. …
I wrote about a phishing-as-a-service (PhaaS) earlier this week – Threat actors target MFA – here is another one that is active on both iPhones and Android phones. New Darcula phishing service targets iPhone users via iMessage (bleepingcomputer.com) One of the main cyber security issues with PhaaS is that relatively …
Continue reading “You are vulnerable on both Android and Apple phones to this attack”
