Phish, Phish go away, come back no other day!

Email Phishing is big business as it’s a reliable attack vector and large profits can be made with the least amount of time and investment.

Attackers are good at what they do and very creative. I recently spoke to a business owner who had an email come from a friend asking for £50,000 as they were on holiday and needed funds to help purchase software for a deal they were working on. This was an account takeover, so email address was correct, and the friend was indeed on holiday. Luckily for the business owner he was very savvy and called his friend.

I speak to several organisation’s a day who say they have this area covered but when you drill down into solutions in place, they only have traditional email security, secure email gateway or use Office 365 or Gmail advanced protection. These solutions are still needed but how they work is looking in the content for bad, URLs, attachments, hyperlinks.

Social engineered emails that carry no payload and are cleverly written to provoke a response, like a third party you deal will asking you to make payments to a new routing number. With this in mind you need a layered Defense and Agari can give you Phishing protection for both inbound and outbound as both components need to be addressed.

 

  1. Ask yourself, how do you detect a threat like this when the content of the message is false information with no malicious links or attachments?
  2. How do you know when attackers are posing as employees of your company to use your good reputation?
  3. If you don’t have a solution that uses data modeling to create a metric of trust for each user in an organization based upon statistical analysis of email telemetry. Characteristics like a sender’s email address, the IP address of a sender, a sender’s organization’s domain reputation, and so on that are used to build a baseline of “normal.” How are you stopping non payload social engineered Business Email Compromise and Account Takeover attacks?

 

Don’t take my word for it, ask for a health check today and let us show you what’s getting through. With no obligation to purchase.