Have Your Users Made You an Easy Target for Spear Phishing?

By:  |  Category: Blog Friday, February 1st, 2019  |  No Comments

Have unwanted emails made their way into your inbox this month? Targeted spear phishing and blackmailing spam attacks are on the rise. Unfortunately, even with a strong anti virus and a well designed firewall, some spam will still make it through. These are simple text emails that slip through the best filters targeting a users propensity to click on a link based on an emotional pull.

Basically, the hackers are using your likes, hobbies and even job profile against you. For example, maybe you are in HR and are used to clicking on payroll emails from a certain vendor. The hackers spoof the payroll company’s email and you automatically click without taking a deeper look at the domain. And bamm…they got you.

Sadly, these days, almost everyone’s email address has been compromised in some way and the identities of your organization are exposed on the internet and easy to find for cybercriminals. With that email attack surface, they can launch targeted social engineering, spear phishing and ransomware attacks on your organization. 

So how do you protect your business from the constant onslaught of data breaches compromising the integrity of your employees passwords and information?

One way to check your vulnerability is a domain and email scan.

An email and domain check can crawl business social media information and hundreds of breach databases to check for compromised passwords.

A scan will first conduct a deep web search to find any publicly available organizational data. This will show you what your organizational structure looks like to an attacker, which they can use to craft targeted spear phishing attacks.

Then, it will find find any users that have had their account information exposed in any of several hundred breaches. These users are particularly at-risk because an attacker knows more about that user, up to and including their actual passwords!

Last, a good scan will give you a summary report of the number of exposed emails, identities and risk levels found. You should also get a link to the full detailed report of actual users found, including breach name and if a password was exposed.

If you are interested in learning more give EnhancedTECH a call for a free domain and email scan. If we find any compromised passwords we can recommend a security solution to protect your business from a cyber attack. Call us at 714-970-9330 or contact us at [email protected]

Leave a Comment
Read previous post:
Intelligent Manufacturing
New Trends in Intelligent Manufacturing

When you read the word “manufacturing”, surely one of the first thoughts that pops into your head is Henry Ford’s...