Friday, September 17, 2021

Phishers who speak to everyone, from sales staff to C-suite executives

- Advertisement -

Must read

All Transform 2021 sessions are available on demand now. Watch now.


The average CEO receives 57 phishing emails a year, but other executives and non-executives, such as sales and IT employees, are getting hit just as hard. This is according to new research of the security firm Barracuda Networks, which analyzed more than 12 million email attacks that affected more than three million mailboxes in approximately 17,000 organizations.

“It affirms our view that these attackers are becoming more patient than before and are willing to spend time building trust and socially engineering their way to target more valuable assets eventually,” Fleming Shi, Barracuda CTO, told VentureBeat.

Sales employees are great targets because they frequently interact with people outside of their organizations, Shi said. They are the target in 20% of business email compromise (BEC) attacks, and malicious actors often manipulate sales orders, quotes, and other business emails. IT personnel are also a common target, because their access to the IT infrastructure is extremely valuable for attackers to establish persistence in the network and plan lateral movements. They receive more than 40 phishing attempts a year on average, according to research. Overall, Barracuda found that an average organization is the target of more than 700 social engineering attacks in a year, 49% of which are specifically phishing attacks.

Who are the attackers posing to?

In addition to who it’s targeting, Barracuda also looked at exactly what those phishing emails look like – specifically, who they’re impersonating. Research shows that Microsoft is the most imitated brand, with 43% of attackers posing as the company. This has been the case since 2018, according to security company Vade. In the first six months of 2021 alone, Vade found 12,777 Microsoft phishing URLs. The company also recently discovered that hackers hijacked one of Microsoft’s anti-phishing features to launch more sophisticated phishing attacks.

“It’s quite telling that Microsoft continues to be imitated more than any other brand,” Shi said. “Not just because Microsoft is a trusted name, [but] also because they are the identity provider that most organizations use. “

According to Barracuda, WeTransfer and DHL are the other most impersonated brands and, along with Microsoft, have been in the top three since 2019. WeTransfer’s spoofing has especially been on the rise, doubling since its use in 9% of phishing attacks in 2019 to 18% this year. The company also found attackers posing as Google, eFax, DocuSign, USPS, Dropbox, Xerox, and Facebook.

Phishing attacks on the rise

If it seems like phishing attacks are everywhere, that’s because they are. In the aforementioned report, Vade also revealed a big jump in phishing attacks since the beginning of the year, with a 281% increase in May and another 284% increase in June. Shi said these types of attacks are “unfortunately very effective” and are on the rise because they are used to steal credentials.

These numbers reflect other recent research by IT asset monitoring, management and security platform provider Ivanti, which surveyed organizations on recent attacks. According to the report, 80% of respondents said they had seen an increase in the number of phishing attempts directed at their organizations, and 74% said that their organizations had been the victims of a phishing attack in the last year. In that research, nearly 75% of those surveyed said IT staff was the target.

Both reports, as well as many others, show not only that the attacks are occurring more frequently, but that they are also becoming more sophisticated. Thomas Briend, the Vade engineer who discovered the Microsoft 365 tactic, said it is “the first time in terms of API abuse,” as far as he knows. Shi also specifically called out the new links between cryptocurrencies and spearfishing, describing phishing attacks targeting specific individuals or organizations. While Bitcoin has always been used to collect ransom payments, hackers have increasingly masqueraded as digital wallets and other related applications to steal valuable cryptocurrencies outright. The report notes that this has been going on for the past eight months, coinciding with the recent surge in the value of Bitcoin.

In general, Shi believes that we are entering a phase that he calls the “post-breach era”, in which we have to accept that a large part of our data and credentials has already been stolen.

“We must have visibility, detection and response capabilities to ensure that criminals are stopped,” he said. “I want to be clear, this is not an easy task given the complexity of the attacks.”

VentureBeat

VentureBeat’s mission is to be a digital urban plaza for technical decision makers to gain insight into transformative technology and transact. Our site offers essential information on data technologies and strategies to guide you as you run your organizations. We invite you to become a member of our community, to access:

  • updated information on the topics of your interest
  • our newsletters
  • Exclusive content from thought leaders and discounted access to our treasured events, such as Transform 2021: Learn more
  • network features and more

Become a member

Do Not Miss

More articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This is how your business works – TechCrunch

0
Gingko Bioworks, a synthetic biology company now valued at around $ 15 billion, begins trading on the New York Stock Exchange today. Gingko's market...

Internal Documents: Anti-vax activists flooded Facebook to cast doubt on the...

0
Wall street journal: Internal Documents: Anti-Vax Activists Flooded Facebook to Sow Vaccine Doubts, Overwhelming Authorized Sources, Despite Their Push to Promote Vaccines- Company documents...

USWNT vs. Paraguay: Live Scores, Updates, International Friendlies Highlights

0
The United States women's national team is back in action for its first match since the conclusion of the 2021 Olympics, where it took...

Grailed, an urban clothing resale platform, raises $ 60M Series B...

0
Lucy Maguire / Vogue Business: Grailed, a streetwear resale platform, raises $ 60M Series B led by competitor Goat Group with...

Climate promises put the world on a ‘catastrophic track’

0
BERLIN (AP) - The world is on a "catastrophic path" to a warmer future unless governments make more ambitious promises to cut greenhouse gas...

Brady: could play until 50

0
Tampa Bay Buccaneers quarterback Tom Brady says he could play into his 50s as the Super Bowl LV champions prepare to face the Atlanta...

[Watch] Dinesh Karthik loses his balance and falls after taking on...

0
Kolkata Knight Riders (KKR) vice-captain Dinesh Karthik lost his balance and fell when he faced the Kamlesh Nagarkot Yorker during a recent practice session....

BMO downgrades Take-Two after video game company delays release of updated...

0
Copies of 'Grand Theft Auto V' on display for sale at a GameStop store in Peru, Illinois.Daniel Acker | Bloomberg | fake...

Middlesbrough vs Blackpool prediction, preview, team news & more

0
Middlesbrough host Blackpool at Riverside Stadium in the EFL Championship on Saturday, and both teams have had a disappointing start to their seasons thus...

Labor Condemns New Commerce Secretary for Tweets Rejecting Climate Science |...

0
The new secretary of international trade, Anne-Marie Trevelyan, has been accused of rejecting the science behind the climate emergency after a series of tweets...

Apple and Google come under pressure in Russia to remove Kremlin...

0
Apple and Google removed a tactical voting app created by the organization of jailed Kremlin critic Alexei Navalny from their respective mobile app stores...

Juventus claims massive financial losses but backs the Super League

0
Most, if not all, football fans probably assumed that the controversial European Super League announced earlier this year had disappeared before it actually started...

Is James McAvoy’s impromptu thriller the weirdest Covid movie yet? ...

0
TThe pandemic has subjected us to a brave new world of cinematic experiences: a horror shoot on Zoom, Anne Hathaway trying to rob Harrods,...

The race for the new prime minister of Japan begins

0
TOKYO: The campaign to become Japan's next prime minister begins on Friday, with four candidates vying for the leadership of the ruling party in...

Fight fire with fire to protect redwoods

0
LOS ANGELES (AP) - With flames moving toward the signature grove of ancient towering trees in Sequoia National Park, firefighters on Thursday battled the...

The Barcelona board wants to fire Ronald Koeman

0
Some members of the Barcelona board have reportedly asked Joan Laporta to fire Ronald Koeman. However, the financial situation of the club prevents...

College Football Upset Alert: Expert Picks For Week 3 Losers With...

0
This is not an easy contest, folks. And yet here we are, two weeks in this underdog business, and our college football wizard...

‘How is Pauli Murray not a household name?’ The extraordinary life...

0
It seems inconceivable that someone like Pauli Murray could have slipped through the cracks of US history. A lawyer, activist, scholar, poet and priest,...

Wall Street Analysts Choose Global Green Energy Stocks To Buy

0
This image shows the La Muela 3 wind farm in Spain. Enel Green Power Bank analysts, including JPMorgan and Bank of America, have named...

What is Aaron Rodgers’ record after a loss since Matt LaFleur...

0
Aaron Rodgers suffered the biggest loss of his career in the NFL against the New Orleans Saints in Week 1 of the 2021 season....

IPL 2021: “Moeen Ali will be CSK’s profitable player in the...

0
Former Indian cricketer Aakash Chopra feels that England's experienced all-rounder Moeen Ali will be the profitable Chennai Super Kings (CSK) player in the UAE...

Experience: I got on a conveyor belt with my scarf |...

0
I. He had worked intermittently at Argos when they needed seasonal staff since he was 17 years old. By Christmas...

English Premier League odds, lines, plus and minus – up-to-date betting...

0
The English Premier League season continues with a full line-up of matchday five action between Friday and Sunday. For the first time this...

Taliban Ban Girls From Secondary Education In Afghanistan | Afghanistan

0
The Taliban have effectively banned girls from secondary education in Afghanistan, by ordering that secondary schools reopen only for boys.The girls were not mentioned...

India tells China that border troop pullback is needed to improve...

0
India's foreign minister says relations will only develop when both countries withdraw their troops from the disputed Himalayan border.India has told China that its...

Addressing Vaccine Indecision

0
Covid-19 vaccine updatesSign up for myFT Daily Digest to be the first to know what's new about Covid-19 vaccines. In rich countries there are many...

More than 60 South Korean crypto exchanges to suspend services next...

0
FILE PHOTO: Representations of the cryptocurrencies Bitcoin, Ethereum, DogeCoin, Ripple, Litecoin are placed on the PC motherboard in this illustration taken on June 29,...

Pfizer and Moderna Investors Prepare for Eventual Slump in Vaccine Sales

0
Pfizer and Moderna developed their Covid-19 vaccines at unprecedented speed, dominating the global jab market and driving their share prices to record highs.But as...

Indonesia Adds Patrols After Detecting Ships in South China Sea |...

0
Jakarta deploys five navy ships, assisted by an air patrol in the North Natuna Sea after Chinese and US vessels were detected in nearby...

Former congressman charged with manslaughter in the death of a white...

0
RUSSELLVILLE, Ark. (AP) - A former Arkansas sheriff was charged Friday with manslaughter in the fatal shooting of a white teenager whose death...

Former Instacart CFO Sagar Sanghvi Joins Accel as Newest Partner –...

0
InstacartCFO Sagar Sanghvi left the on-demand grocery delivery company after nearly six years and is returning to his investment roots. Specifically, Sanghvi has...

Navalny App Removed From Online Stores While Russian Polls Open

0
MOSCOW (AP) - An app created by allies of jailed Russian opposition leader Alexei Navalny disappeared from Apple and Google stores on Friday when...

Liverpool’s Klopp ‘not involved’ in contract negotiations with Salah

0
Liverpool manager Jurgen Klopp is more focused on Mohamed Salah's play than on his contract negotiations with the club. "There is nothing really to...

France calls the assassination of Islamic State leader a great victory

0
PARIS (AP) - The Islamic State leader in the Greater Sahara died of injuries from a drone attack that struck him on a motorcycle...

Argentine Vice President Leads Cabinet Revolt Against President | Coronavirus...

0
The crisis came after a series of resignations by left-wing ministers allied with Vice President Fernández de Kirchner due to the bad economy.Argentina's center-left...

Australia will allow some returnees to self-quarantine at home

0
The Australian state of New South Wales will allow some returning international travelers to self-quarantine at home from the end of the month, possibly...

Apple and Google come under pressure in Russia to remove Kremlin...

0
Apple and Google removed a tactical voting app created by the organization of jailed Kremlin critic Alexei Navalny from their respective mobile app stores...

Chris Gayle, Fabian Allen, Nicholas Pooran and Andy Flower join the...

0
West Indies superstars Chris Gayle, Nicholas Pooran, Fabian Allen and Zimbabwean legend Andy Flower have landed in the United Arab Emirates for the second...

CBS Discards ‘The Activist’ After Receiving Backlash On Social Media, Reworking...

0
TSR Updatez: People have spoken and "The Activist," which was originally going to be a reality competition series, has been dropped on CBS.Within hours...

Top 5 players to watch in GW 5 of the Premier...

0
Matchday four of the 2021-22 English Premier League season saw great individual performances. Cristiano Ronaldo returned to his old club Manchester United in...

‘A Forgotten Disaster’: Haitians Hit by Earthquake Failed | Global...

0
D.Avid Nazaire, a 45-year-old coffee farmer from Beaumont, a small village in rural southern Haiti, was preparing to harvest when an earthquake struck his...

Telegram has become a hub for criminals to buy, sell and...

0
Hannah Murphy / Financial times: Telegram has become a hub for criminals to buy, sell and share stolen data and hacking...

New Zealand’s pandemic housing policy has sparked Maori inequality for generations...

0
TThe only thing more predictable than rising house prices is the tenor of the stories as monthly data is reported from governments or the...

Biden, the EU urge 30% cuts in methane emissions, a crucial...

0
<img class="caas-img has-preview" alt=" Methane is the second most abundant greenhouse gas in the world. It does not stay in the atmosphere as...
- Advertisement -

Don't Miss