Tag: Phishing
Ego Stroking Spear Phishing
Senior managers and executives get spam that is a little different than most users. Spammers like to stroke their egos to get through the door. (Mar 03, 2011)
The Spam Before Christmas
The Spam Before Christmas [Video]. ‘Twas the fortnight before Christmas, and all through my email / No good messages were stirring, just illicit retail; / There were Viagra and Cialis, and their load of bunk, / And watches galore – really, who buys this junk? (Dec 08, 2010)
Latest spear phishing wave targets companies
Let’s say your name is Jim and you get this email. It looks like this Michelle knows you but you can’t really remember who she is. Since you have 8,641,037 friends on Facebook, you decide to trust the email (it’s not perfect, but it’s not as full of typos as typical spam, so that’s a start!). (Nov 12, 2010)
Word of the Week: Phishing
This week's Word of the Week is Phishing. What exactly does it involve and how can you prevent unsuspecting people from becoming victims of it? According to Wikipedia, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames,passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public. (Aug 26, 2010)
My spam is different from your spam!
The type of spam you receive depends on many things, including your behavior on the net, how you use your email address, your position in a company and much more. As a software company executive I receive a very particular stream, one that is probably very different than what most people receive. Well, at least that's what our Security Operations team tells me. (Jul 22, 2010)
Surfing on Web 2.0: Where Innovation Meets Cybercrime
Yesterday, I logged into Facebook. I usually never use my account there (I am not a Facebook fan), but once in a while I’ll spend some time on it. For the first time, after entering my credentials, a “security” page appeared stating that unusual activities have been witnessed on my account. I then had to answer some questions, choose the names of some tagged friends, and reset my password. I have no idea what happened or how my account got compromised. (Jul 20, 2010)
Sex, pills & scams
These three words reflect 90% of the spam traffic for May-June 2010. Between fake Twitter emails and classic Nigerian 419, there was a rise of new phishing attempts using .html attachment files. (Jul 15, 2010)
Who’s responsible for Internet Security?
A couple of stories in the news today caught my attention because they have very opposite perspectives on tackling cybercrime and Internet security. First, the Australian government is thinking of making home computer users responsible for security1. They’re contemplating legislation to force users to install anti-virus programs and firewalls on their home computers before being allowed to connect to the Internet. (Jun 23, 2010)
Interesting question from a customer: “Why should we block .EXEs?”
The majority of phishing attempts with drive-by-downloads try to entice you to download EXE files and run them locally. EXE files should always be blocked. You can open certain files on a case-by-case basis and in a very controlled fashion, but that’s the extent of it. (May 26, 2010)
SURBL: The catch of the day
There it is again: another email in your Inbox from an obscure financial institution, requesting that you click on the available link and be redirected to an unknown, unsecured website. Prompted for personal details or your credit card number, you hesitate to enter this information thinking something seems fishy. (May 19, 2010)
Facebook or Faceblock? Facebook implementing their own ‘email security’?
Facebook is coming under scrutiny (again!), this time about their email scanning policies. Most of you are probably in the email security industry and are well aware that any email security solution will scan a message to divert or block spam, phishing, etc. (May 12, 2010)
Six items often overlooked when purchasing an email security solution
As discussed in an earlier post , the battle against spam is an ongoing one and requires you to do your due diligence when selecting an email security solution to protect one of your business’ most important assets: email. (Apr 26, 2010)
Why can’t you stop this spam?
Maybe you’ve seen more spam hitting your Inbox over the past couple of months and wondering, “Why am I paying for filtering? This stuff is obviously spam – why can’t you guys stop it?” The main challenges of being in the spam filtering business are dealing with clients’ expectations on the one hand, and the sheer size of the spam/malware machine on the other. (Apr 16, 2010)
Anti-Social Networking
Web 2.0 is leading us to operate and collaborate more through our web browsers than ever before. Consequently, sites like Facebook, Twitter, LinkedIn and MySpace are being used more aggressively for everything from chatting to marketing. Spammers are loving this. (Apr 07, 2010)
March Email Security News
A summary of links to recent articles that I have found interesting in the last few weeks. Includes my own commentary. (Apr 02, 2010)
Are machines really the “bad guys”?
Do you know what this is? Of course you do! This, along with some other strange stuff, has gained popularity and become part of our virtual life when browsing the web. CAPTCHAs (as they’re known) are one example of a Turing test: a challenge-response criteria that is used to determine the probability that a remote being is actually a human vs. a computer that’s trying to mimic a human response. (Mar 31, 2010)
Battle of the Newsletters: Marketing 1, Security 0
While working on a False Positive (yes, it can happen to the best of us), I was stunned to discover how marketing people can bend email security rules. (Feb 22, 2010)
2009 Spam Review
2009, according to the Chinese calendar, was the Year of the Ox: “People born in the Year of the Ox are patient, speak little, and inspire confidence in others.” Well that description pretty much sums up most of the spam sent in 2009: the perpetrators tended to say little in the messages, but oh did they inspire confidence – in the criminal sense! 2009 showed a remarkable increase in Phishing/Fraud content. (Jan 11, 2010)
10 Resolutions You Shouldn’t Break This Year
It's that time of the year again..time to make (and break) resolutions. Here are some things to help you keep your email and network safe from malicious attacks. Resolutions you don't want to break! (Jan 08, 2010)
One phish, two phish, red phish, blue phish
Typical phishing messages purport to originate from various financial institutions, delivery services, Facebook, and so on, all with the aim of getting you to click the enclosed link and disclose some personal information that can be abused. (Dec 16, 2009)
More Recent News
Recent Spam Survey Winners
We are extremely pleased with the tremendous response that we have received to this point from our Fight Email Spam survey. As promised we have randomly selected winners of our gift card prizes. (Jan 23, 2012)
New Year's Resolution
We spend 8 to 10 (or more) hours a day at work - more time than we spend anywhere else - and our desks/workspaces are becoming our kitchen tables. But, do you realize that our desks are covered in more bacteria... (Jan 20, 2012)
Email Usage Survey
We are currently conducting a market research on email usage at work. Thank you for filling our this very short survey. (Jan 12, 2012)
