Posts Tagged Phishing Scams

Most Commonly Clicked Phishing Email Subject Lines

18th Oct 2017

Phishing emails with clickbait subject lines are increasingly being used to elude security filters and gain access to computer systems. According to Verizon’s 2017 Data Breach Investigations Report, two-thirds of all malware were installed via email attachments in 2016. 60% of malware were packaged in JavaScript attachments, while 26% were packaged in malicious macros embedded in Microsoft Office documents.

To avoid any phishing attacks you need to keep pace with the hackers who are coming up with dynamic new ways for launching a cyber-attack.  Email is the most widely used channel for a phishing attack because it is relatively easier to dupe people by sending fraudulent emails and trap them. They disguise as legitimate persons or companies and through fraudulent emails, direct users to a fake website in order to request for sensitive information and credentials.

These phishing emails, generally use subject lines, which encourage users to open email and click on link in it. Here we have listed some commonly clicked phishing email subject lines for you to take notice.

Social Media Email Subject lines –

  • Free Pizza – Who wouldn’t want one, but it comes at the cost of security breach. Hackers tend to play with human psyche as the word FREE is always appealing, and when the receiver opens the mail, they exploit it for their own benefits.
  • A message from your friend – Hackers sometimes use social engineering tactics to find out names of your close friends and relatives. They impersonate your acquaintances and send you an email which contains malware, to access your private information.
  • Reset Password
  • New message
  • Login alert
  • Unread Message
  • New Voice message
  • Account Validation Required

General Email Subject Lines –

  • Security Alert
  • UPS Label Delivery 1ZBE312TNY00015011
  • Urgent Action Required
  • BREAKING: United Airlines Passenger Dies from Brain Haemorrhage – VIDEO
  • A Delivery Attempt was made
  • All Employees: Update your Healthcare Info
  • Unusual sign-in activity
  • Your Bank Account will be Deactivated: Online Banking ALERT
  • Ready for your beach vacay?
  • You have won a Lottery
  • Direct Deposit of payment in your account
  • Bank transfer of 75000 USD
  • Your order #335515 placed on Sunday is paid.

What are the ways to avoid Phishing emails?

Educate yourselves and your employees about the phishing techniques and cognize them about ways to identify dubious mails. Do not click on random links sent in an email from an unauthorized sender, and to verify a site’s security, ensure that the site’s URL begins with ‘https’. Also avoid entering any personal information unless you are cent percent sure that the mail is sent by a trusted sender. Also make sure that you install an antivirus software on your system and use high quality firewalls.

,

No Comments

How Can Organizations Guard Against Phishing Scams?

23 August, 2016

Business organizations are a worthwhile target for the hackers to carry out phishing scams. Whether it is to steal passwords, employee details or any other sensitive data, just a single click from an ignorant employee is sufficient to give out the information sought by the hackers. Though most phishing emails are detected by spam filters, it is important for the employees to understand the risks and consequences to avoid falling victim to such attacks.

Listed below are some steps organizations should take to guard against phishing scams:

Initiate A Security Awareness Program

The reason why phishing attacks have a high success rate is because they target the end users, i.e. people who have little or no technical knowledge about data security. Therefore, educating your employees about this aspect can help to decrease the probability of a potential data breach. As phishing attacks mainly involve a fake email, malicious attachment or ad, unsolicited friend request on social media etc., security awareness program will help your employees identify such suspicious activities more easily.

Keep Software Regularly Updated

Though security software do not offer complete protection against phishing attacks, they can prevent application downloads or website redirects that seem to be potentially dangerous. Hence, it is important to install and update anti-virus, anti-malware and anti-spyware software on all the computers in the organization. The same rule applies to the operating system and other programs installed on the systems. Keeping the software patched will protect you against the latest security threats and vulnerabilities.

Use Layered Security

Make sure your organization’s confidential information is protected by multiple layers of security. With this, even if a phishing attack is successful, the hackers would not be able to gain access to all the data stored on the victim’s computer system. Use secure user IDs and passwords, followed by data encryption, access control protocols, user activity monitoring and other such types of layered security.

Follow Best Password Practices

Encourage your employees to follow the best practices when it comes to maintaining confidentiality of their official email accounts. Make sure they create strong passwords and change them at frequent intervals. Also, the login credentials should be stored in an encrypted format in the computer system. By combining difficult and lengthy passwords with two-factor authentication, you can considerably reduce the consequences of a phishing attack.

For more tips on preventing and managing phishing attacks, feel free to contact Centex Technologies. We can be reached at (855) 375 – 9654.

, ,

No Comments