Jul 30 Posted 2 years ago
To follow on from section 2 of the article, one of the specific pieces of information users should be looking to ensure remains private is their email address. Social networking sites and forums can allow users' email addresses to become visible, allowing them to be trivially enumerated and targetted by phishing and spear-phishing attacks.
For personal accounts, this can mean your email inbox becoming flooded with phishing emails, trying to get you to click links to malicious websites that put your personal data at risk.
For corporate accounts this poses an even bigger problem - we often see attackers performing spear-phishing attacks against organisations in a bid to exploit employees to gain access to confidential and sensitive corporate data and/or systems. The vast majority of these attacks use information found in the public domain, including corporate email addresses listed on social networking sites and forums, as a base from which to identify employees inside an organisation to target with spear-phishing - with success rates often in the region of 65%+, even against firms with good employee security awareness training in place.
Webinars On Demand
August 17, 2016Social media has transformed the way brands can interact with customers, providing a platform to engage in new and exciting ways. It can be chal...
June 15, 2016Building an effective goal-driven strategy, advanced campaign optimization, making sense of massive amounts of data from many channels — these a...
February 05, 2016Facebook contests and campaigns are powerful ways for brands to engage with customers in social. They encourage social sharing, spur user-ge...
November 24, 2015An exclusive report brought to you by Social Media Today and Hinge These days, cutting edge companies know that if they aren't leveraging t...