Your brand reputation can be at risk. Cyber criminals can exploit the weaknesses in email security and impersonate your brand to send phishing emails. Thanks to DMARC, you can protect your brand’s identity and keep phishers at bay. Read on to figure out how DMARC works and what is in it for you.
Spear phishing is the new kid on the block which has been giving sleepless nights to email security folks. Spear Phishing is a specialized and more targeted type of phishing attack. Traditional phishing attacks are one to many types, which are usually conducted by sending malicious emails to as many people as possible. Such emails appear to come from trusted sources like your bank, or some other online utility service and they contain links to deceptive sites which make victims reveal their passwords, sensitive account information, confidential pins, etc. Sometimes the phishing message try to lure the victims into opening infected attachments which once opened can seize control over victim’s device and harvest sensitive information stored on the device. The modus operandi of Phishing attacks is to cast a wide net. Phishers seem to spread their enticements all over and don’t care what kind of fish they catch – as long as the victims take the bait, they can infiltrate and cause the damage. In contrast to the mass email approach of phishing, Spear Phishing is a targeted attack or rather one on one, where the Phisher creates a fake narrative or impersonates a trusted person and establishes a conversation with the victim. Only later does the Spear Phisher request confidential credentials or sends a malicious URL/attachment. Though the end goals of Phishing and Spear Phishing are the same, the tactics employed by the two vary.
Spear Phishers do a lot of research about the intended victim before crafting their first message. They study the social media profiles like Linkedin, Facebook, etc. of the victim and try to build a profile around the victims work and general life. The chosen victims are ones who have access to some sensitive information about their organization like intellectual property, bank passwords, etc. The Phisher sends an email to the victim which seems to come from a colleague or business associate. The first few interactions do not contain any link or attachments, hence are difficult to be detected by anti-spam and anti-virus filters. After a few interactions, the Phisher either sends a link to the victim that can infect his machine with a spyware or sometimes even drives the victim to share some IP or transfer money to his account, citing an extraordinary situation.
The business impact of Spear Phishing attacks can be devastating. In 2014, Sony Pictures faced a huge reputation damage when private email were exchanged between executives revealing embarrassing comments about famous people. The studio lost control of complete, unreleased movies, which fell into the hands of digital pirates. The company had to incur a cost of around $8 million to settle lawsuits with employees who were forced to protect their identities from the theft. In 2015-16, the Russian cyber espionage group Fancy Bear allegedly committed one of the more famous spear phishing campaigns and infiltrated the Democratic National Convention in USA to steal emails. The Russians had gained access not only to email systems but also to backup servers, VOIP calls, and chats. Between repairing and replacing equipment and hiring experts to manage the fallout, the expense was over a million dollars.
Conventional Anti Spam filters derive signatures, recurring patterns & phishing URLs by using information from previously identified threats. This arrangement was successful in fighting mass spam emails – which threatened to make email unusable. However, email security based on signature and recurring patterns is completely ineffective in identifying the ‘one-off targeted Spear Phishing attacks’. The first few emails sent by Spear Phishers do not contain any attachments or links, thus go undetected by spam filters. The Spear Phishers intention is to build a trust with the victim. Phishers usually send emails from legitimate email addresses having good reputation and spoof the display name, thus are not filtered by techniques such as DMARC, which rely on policies enforced by senders with resect to their domain names. The Rediffmail Enterprise Spear Guard filter uses artificial intelligence consisting of machine learning and predictive heuristic rules to block Spear Phishing attacks even in their initial stages.
This is the second edition of the cyber security show & awards, an event by Trescon on 20th September 2018 at The Leela Mumbai. Rediffmail Enterprise is proud to be the PLATINUM PARTNER for the event.
For most of the companies, over 70% of your business critical information reside in your emails and there are many ways by which mail data can be leaked electronically from a company like inappropriately printed info, copying to pen drive, writing the data to a DVD/ CD or any other portable storage device.
Email is the backbone of any business and managing it well has become mission critical for the company. Gone are the days when SMEs fret over their changing email needs and availability of the email solutions that just fit your growing organisational needs. Large organisations no longer considered that on-premise hosted email solutions is the only option for confidentiality, control and better management of mails, and they do realize that it is just a ‘white elephant solution’. Today with the right cloud based email solutions, businesses Small, Medium or Large can focus more on their core business than spend time on their email solutions.
Long ago telephone was a means of communication to talk to someone if they happened to be at home. In today’s world mobile phones are not only used for multiple activities apart from the traditional phone call but they have become a 24×7 necessity.