Jul 30 Posted 2 years ago
To follow on from section 2 of the article, one of the specific pieces of information users should be looking to ensure remains private is their email address. Social networking sites and forums can allow users' email addresses to become visible, allowing them to be trivially enumerated and targetted by phishing and spear-phishing attacks.
For personal accounts, this can mean your email inbox becoming flooded with phishing emails, trying to get you to click links to malicious websites that put your personal data at risk.
For corporate accounts this poses an even bigger problem - we often see attackers performing spear-phishing attacks against organisations in a bid to exploit employees to gain access to confidential and sensitive corporate data and/or systems. The vast majority of these attacks use information found in the public domain, including corporate email addresses listed on social networking sites and forums, as a base from which to identify employees inside an organisation to target with spear-phishing - with success rates often in the region of 65%+, even against firms with good employee security awareness training in place.
Webinars On Demand
January 25, 2017While we’ve had access to the Internet since the early 1990s, we’ve only started to experience the full effects of its disruption on public rela...
December 07, 2016It's finally happened, social media has grown up and sold out. And it's awesome. For digital marketers, the maturing advertising options on soci...
Video is expected to account for three-quarters of all mobile traffic by 2020. But, creating powerful, effective video requires a significa...
Marketers are constantly seeking to engage with their buyers and drive actions that help buyers move rapidly through their customer lifecycl...