A picture of a London newsstand on Saturday, May 13, 2017, the day after the WannaCry ransomware cyberattack struck. (Picture by Jason Steer, Menlo Security, Inc.)
A picture of a London newsstand on Saturday, May 13, 2017, the day after the WannaCry ransomware cyberattack struck. (Picture by Jason Steer, Menlo Security, Inc.)
Tags: ransomware, anti-phishing, phishing prevention, spear-phishing, phishing scams, Wana Decryptor, WCry, ETERNALBLUE, Windows security update, MS17-010
Tags: ransomware, anti-phishing, phishing prevention, spear-phishing, phishing scams, Wana Decryptor, WCry, ETERNALBLUE, Windows security update, MS17-010
In the past, an attacker looking to steal credentials would craft a convincing email and landing page that did not trigger any red flags to the user. Attackers could be certain that at least 11% of people, even those who’d had phishing awareness training, would click malicious email links. Looking to up this percentage, attackers have evolved phishing exploits to use novel techniques, and OAuth is an important part of this evolution. This new approach is making it more challenging than ever for users to know when it is safe to click.
Tags: phishing, isolation, phishing prevention, Eugene Pupov, phishing scams, Google Docs email scam