We’ve heard about spear phishing, where the target is personally singled out, rather than just part of a larger spam group. Now it looks like phishers are starting to focus on more valuable targets, such as CEOs, other corporate executives, and even their families. I’m not too surprised, since the computers these attacks might compromise could potentially contain very sensitive data. This opens up the possibility of blackmail, doing reconnaissance to further attack a corporation, or maybe even some old fashioned social engineering and identity theft.
Mitigating this risk requires increased education about online safety for the execs and their families, as well as stronger security controls on their personal computer systems. That includes the Mac in the kitchen that the kids use, as well as the business laptop and PDA.
Post a Comment