Phishing and Pretexting Dominate Social Engineering-Associated Knowledge Breaches

New information exhibits that regardless of the huge evolution of the cybercrime financial system, menace actors are sticking with the fundamentals in social engineering assaults, with a purpose at stealing information.

I in all probability might have referred to as this purely based mostly on all of the articles I’ve written (and all of the articles I’ve learn that by no means made it right here). However on the subject of defending your group from social engineering, keep on with the fundamentals.

In accordance with the most recent Verizon Knowledge Breach Investigations Report, information breaches that depend on social engineering use three primary strategies – pretexting, phishing and extortion, as proven under:

Verizon - Pretexting

Supply: Verizon

All three strategies depend on establishing credibility with the sufferer sufficient to get the sufferer to reply. Pretexting is essentially the most rudimentary social engineering the place the attacker makes an attempt to get the sufferer to belief them and, ultimately, share data. It’s the precursor to different assault sorts and is used to realize intelligence that will likely be leveraged in a future menace motion.

And since there’s no malicious hyperlinks or attachments, there’s little means to detect it as being dangerous to the group. That’s in all probability why we see it within the primary spot, represented in simply over 40% of social engineering-based information breaches.

The usage of pretexting additionally speaks to the necessity to educate customers about such “attacks” (which gained’t really feel like an assault in any respect, however extra a reaching out and establishing content material) via safety consciousness coaching designed to raise a customers sense of vigilance such that, even when an e-mail seems benign in nature, there’s nonetheless a default degree of disbelief and scrutiny, serving to to decrease the chance of an assault.

KnowBe4 empowers your workforce to make smarter safety choices each day. Over 65,000 organizations worldwide belief the KnowBe4 platform to strengthen their safety tradition and scale back human danger.

Recent articles

Patch Alert: Essential Apache Struts Flaw Discovered, Exploitation Makes an attempt Detected

Dec 18, 2024Ravie LakshmananCyber Assault / Vulnerability Risk actors are...

Meta Fined €251 Million for 2018 Knowledge Breach Impacting 29 Million Accounts

Dec 18, 2024Ravie LakshmananKnowledge Breach / Privateness Meta Platforms, the...