===================================================
Whaling attacks: Taking phishing attacks to the next level
Nick Lewis Techtarget.com
Whaling attacks take phishing to the
next level with much bigger targets. Enterprise threats expert Nick Lewis
explains how to mitigate the risk.
I've heard of a phishing
attack and understand its implications, but lately I've been hearing more and
more about whaling attacks. What is a whaling attack and are there specific
actions an enterprise should take to defend against it?
Whaling attacks are a sub-type of phishing attacks.
According to the official WhatIs.com
definition, "whaling
is a type of fraud that targets high-profile end users such as C-level
corporate executives, politicians and celebrities." Think of it like spear
phishing against high-value, high-profile targets. Famous individuals including
Paris Hilton
were whaling victims before the term came to fruition. "Whales" are
at increased risk due to the public nature of their personalities and
lifestyles. Because there are additional risks to going after these targets,
their service providers might also be targeted to get access to their clients'
personal information.
If someone were to use pretexting
to socially engineer a password reset for Paris Hilton's smartphone, the
phisher could easily gain access again to whatever sensitive data she had saved
on the device. Companies targeting whales as customers may want to keep these
types of attacks in mind so they are not used to attack the whale itself.
+++++++++++++++++++++++++++++++++++++++++
In
addition to this blog, Netiquette IQ
has a website with great assets which are being added to on a regular basis. I
have authored the premiere book on Netiquette, “Netiquette IQ - A Comprehensive
Guide to Improve, Enhance and Add Power to Your Email". My new book, “You’re
Hired! Super Charge Your Email Skills in 60 Minutes. . . And Get That Job!”
will be published soon follow by a trilogy of books on Netiquette for young
people. You can view my profile, reviews of the book and content excerpts at:
If
you would like to listen to experts in all aspects of Netiquette and
communication, try my radio show on BlogtalkRadio Additionally,
I provide content for an online newsletter via paper.li. I
have also established Netiquette discussion groups with Linkedin and Yahoo. I am
also a member of the International Business Etiquette and Protocol Group and
Minding Manners among others. Further, I regularly consult for the Gerson
Lehrman Group, a worldwide network of subject matter experts and have been a contributor
to numerous blogs and publications.
Lastly,
I am the founder and president of Tabula Rosa
Systems, a company that provides “best of breed” products for network,
security and system management and services. Tabula Rosa has a new blog and Twitter site which offers great IT product
information for virtually anyone.
==============================================
No comments:
Post a Comment