In response to the recent Krebs On Security report that indicates a spear-phishing attack hooked a customer service employee at GoDaddy.com, the world’s largest domain name registrar, a cybersecurity expert offers perspective.
In response to the recent Krebs On Security report that indicates a spear-phishing attack hooked a customer service employee at GoDaddy.com, the world’s largest domain name registrar, a cybersecurity expert offers perspective.
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics
The attackers behind this incident were quite blasé about their intentions and methods and wanted to showcase what they had achieved. Had they been more subtle, they could have caused far more damage.
But the real story here is that wasn\’t a technical issue that led to the breach, but rather a spear phishing attack. It is why social engineering as a whole remains the most popular attack method because of the high return on investment and success rate.
It is important that organizations of all sizes and across all verticals provide effective and timely security awareness and training to employees. This includes regular use of simulated phishing to get employees used to spotting them and being able to report them to IT for further investigation and response.