spear phishing attacks

6

How to prevent spear phishing attacks Jorge Luis Sierra Knight International Journalism Fellow

Upload: jorge-luis-sierra

Post on 16-Apr-2017

2.222 views

Category:

Devices & Hardware

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Page 1: Spear phishing attacks

How to prevent spear phishing attacks

Jorge Luis Sierra Knight International Journalism Fellow

Page 2: Spear phishing attacks

What is a spear phishing attack?

  Spear phishing is a type of cyberattack carefully crafted to deceive a person and steal online personal information.

  Spear phishing attacks tend to be personalized with features that tempt journalists to click on a link or open a document that, in fact, are malicious programs.

  Journalists can lose not only private information, but also contact lists, research plans, confidential documents, names and contact information of sensitive sources.

Page 3: Spear phishing attacks

Preventative steps

  Always keep your computer and mobile devices updated.

  Install robust antivirus software. You can use Avira, Clam AV, Immunet, Avast, Symantec, AVG or Kaspersky. Other tools are: Spybot and Prozen software.

  Do a diligence process before before clicking any link or opening any file.

  Use your common sense to identify a smear phishing attack: look for misspellings, fake email addresses, any signal of something weird in the message.

  Avoid plugging in your devices to charge batteries in unreliable offices.

Page 4: Spear phishing attacks

Preventive steps

  Avoid using WiFi networks controlled by non reliable people.

  Use your own mobile hotspots or mobile modems to connect to the internet or to send data.

  Always use several layers of encryption to share sensitive information.

  You can use PGP for Mac OSXor Windows.

Add a password to open and change your documents.

  Always use email services that offer end-to-end encryption.

  Lear how to avoid phishing attacks here and here.

Page 5: Spear phishing attacks

What if your device is infected?

  Keep a copy of the infecting message and send a copy to the Citizen Lab of the University of Toronto.

  Check information logs and analyze all traffic to the attacker’s IP.

  Update your antivirus program and run a full scan.

  Back up your information, encrypt it and store it in a safe place.

  Reformat your computer to erase any trace of malware.

  Alert your network of this attack and change vulnerable practices.

  Use Windows appropriately, change to a Mac computer or try Linux.

Page 6: Spear phishing attacks

Jorge Luis Sierra [email protected]

@latinointx 2016

Pc zombie, spam, scam, phishing, spear

CISOs Guide to Spear Phishing Defense - Informationsecurity · The essential components of a mature spear phishing defense capability How to align defenses to counter targeted attacks

SPEAR PHISHING - dandh.com...SPEAR PHISHING VS PHISHING Spear phishing and phishing attacks both leverage impersonation to commit fraud. The difference between the two is that spear

UNCLASSIFIED//FOUO DoD Spear-Phishing Awareness Training · Spear Phishing is a GREATER threat!!! Spear Phishing is a highly targeted phishing attempt. The attacker selectively chooses

Spear Phishing: Top Threats and Trends

Spear Phishing: Who’s Getting Caught?

A Guide to Spear Phishing

What does “Cybersecurity” Really Mean in Healthcare? · Sleeplessness due to User-Focused Attacks Phishing Spear-Phishing Social Engineering ÞImpactful threat vectors Tendency

Phishing Attacks

Web Security Threat Report on Spear Phishing Attacks - Symantec

Attribution of Spear Phishing Attacks: A Literature Survey

INFOGRAPHIC▶ Spear Phishing Scammers Sharpen Their Attacks

Table of Contents - Sutcliffe Insurance · 2020. 3. 26. · 4 Phishing versus Spear Phishing Often, the terms phishing and spear phishing are used interchangeably. However, there

Spear-Phishing - IUSAseguridad.iusa.com.mx/files/modulo4.pdf · Spear-Phishing Los ataques de Spear-Phishing se llevan a cabo por medio de un correo electrónico el cual busca engañar

Symantec Sales Play Sales...Stop spear phishing attacks with the most com-prehensive defense – Symantec combats spear phishing attacks with multiple layers of protection, strong

Detecting Lateral Spear Phishing Attacks in Organizations

How to Avoid Phishing Attacks - Website Security | DigiCert · attacks sent via “fake” emails that look real, known as spear phishing attacks, so they can help protect their privacy

SPEAR PHISHING – AN ENTRY POINT FOR APTS...Spear phishing is a targeted email scam with the sole purpose of obtaining unauthorized access to sensitive data. These attacks will use

Training to Mitigate the Threat of Phishing Attacks: A ...€¦ · Web viewSuch customized attacks, sometimes called spear phishing, have even resulted in serious security breaches

Phishing Attack - farsightsecurity.comPhishing Spear phishing is more personalized with communications appearing to come from sources known to the target. Spear Phishing Whaling attacks

How to Spot Phishing Attacks - MicroAge · How to Spot Phishing Attacks What is Spear Phishing? Like phishing ploys, spear phishing scams are designed to obtain sensitive information

Spear phishing attacks-by-hari_krishna

Table of Contents - RiskSOURCE Clark-Theders › wp-content › uploads › 2019 › 05 › ... · 4 Phishing vs. Spear Phishing Often, the terms phishing and spear phishing are used

Spear-Phishing Email: Most Favored APT Attack Bait · PAGE 2 | SPEAR-PHiSHiNG EMAiL: MOST FAVORED APT ATTACK BAiT spear-phIshIng attaCk IngredIents The Email In a spear-phishing attack,

Spear Phishing Defense Framework - PhishLabs · A strategic, end-to-end model for managing and improving protection against spear phishing attacks Security Awareness Training Malware

The Elderwood Project - Cornell University...Attacks are deployed through spear phishing emails and also, increasingly, through Web injections in watering hole attacks. Although there

Phishing Spear Phishing - ASSP Region I€¦ · Phishing& Spear Phishing attacks are similar -key differences: •Phishingcampaign -very broad and automated, think 'spray & pray’

ANALYZING AND PREDICTING SPEAR-PHISHING USING …

Phishing & Spear Phishing - info.vadesecure.com Marketing Website... · Phishing Spear Phishing Understanding an Emerging Threat to Healthcare Organizations 5 vadesecure.com How Phishing

Ultimate Spear Phishing Defense - MD Tech Connect · The Ultimate Spear Phishing Defense. the Ultimate Spear Phishing Defense Late in 2012 Trend Micro reported that 91% of targeted

Week 7.3 Semantic Attacks - Spear Phishing

Phishing Email Attacks - AVAREN ITfor spear phishing attacks. Spear phishing is nearly identical to standard email . phishing – except it is more targeted. Rather than sending the

Spear-Phishing Attacks: One Click Can Change Everything

SPEAR-PHISHING ATTACKS - SMLR Group, Inc. · PDF fileWHITE PAPE / PEAR-PHISHIN TTACKS 5 Spear phishing uses a blend of email spoofing, dynamic URLs and drive-by downloads to bypass

Phishing Awareness - Valdosta State University€¦ · Types of Phishing Attacks Spear phishing - Phishing attempts directed at specific individuals or companies have been termed