BEC Attacks to Exceed $9B in 2018: Trend Micro

Network Computing Dark Reading

Advertise

About Us

Newest First | Oldest First | Threaded View

[close this box]

50%

BrianN060,
User Rank: Ninja
1/20/2018 | 3:38:54 PM

With emails, our prime assumption is that emails come from people.

Social-engineering email attacks have links to classic magic show acts - the performer uses our assumptions and expectations, developed through experience, to get us to see what's not there, or not notice what is.

With emails, our prime assumption is that emails come from people, rather than from the programmed execution of code residing in a number of machines. Next is the assumption that the name in the "From:" header is that of the "person" or entity sending the email. Then we have the primal assumption that an email is an object, sealed by the sender, traveling directly from sender to recipient, its contents unobserved or altered.

It's not surprising that so many carry forward the assumptions from a traditional mail, metaphor. Many others know these technologies of digital networks, and social-engineering, well enough to exploit the vulnerabilities in the mechanisms and those who rely on them. Conscience brings some of these to help; lack of conscience brings others to a smorgasbord of opportunities to exploit our misconceptions about email.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 10/27/2020

Are You One COVID-19 Test Away From a Cybersecurity Disaster?

Alan Brill, Senior Managing Director, Cyber Risk Practice, Kroll, 10/21/2020

Modern Day Insider Threat: Network Bugs That Are Stealing Your Data

David Pearson, Principal Threat Researcher, 10/21/2020

Live Events

Webinars

Get Your Pass | Interop Digital December 3rd FREE Event

Interop Digital December 3rd FREE Event on Cloud & Networking

More Informa Tech Live Events

White Papers

DevOps for the Database

Preventing Unwanted Guests in Your Mailboxes

Account Takeovers - How Organizations Try to Prevent Them & Why it's Not Enough

The ROI Of SD-WAN: Not Just A Numbers Game

2020 SANS Enterprise Cloud Incident Response Survey

More White Papers

Cartoon

Latest Comment: Honey, where did we hide the secret key to recover the MFA codes?

Cartoon Archive

Current Issue

Special Report: Computing's New Normal

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How IT Security Organizations are Attacking the Cybersecurity Problem

The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.

Download Now!

Special Report: Understanding Your Cyber Attackers

0 comments

2020 State of Cybersecurity Operations and Incident Response

0 comments

The Changing Face of Threat Intelligence

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-11854
PUBLISHED: 2020-10-27

Arbitrary code execution vlnerability in Operation bridge Manager, Application Performance Management and Operations Bridge (containerized) vulnerability in Micro Focus products products Operation Bridge Manager, Operation Bridge (containerized) and Application Performance Management. The vulneravil...

CVE-2020-11858
PUBLISHED: 2020-10-27

Code execution with escalated privileges vulnerability in Micro Focus products Operation Bridge Manager and Operation Bridge (containerized). The vulneravility affects: 1.) Operation Bridge Manager versions: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, 10.63,10.62, 10.61, 10.60, 10.12, 10.11, 10.10 ...

CVE-2020-23945
PUBLISHED: 2020-10-27

A SQL injection vulnerability exists in Victor CMS V1.0 in the cat_id parameter of the category.php file. This parameter can be used by sqlmap to obtain data information in the database.

CVE-2020-7754
PUBLISHED: 2020-10-27

This affects the package npm-user-validate before 1.0.1. The regex that validates user emails took exponentially longer to process long input strings beginning with @ characters.

CVE-2020-6023
PUBLISHED: 2020-10-27

Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to escalate privileges while restoring files in Anti-Ransomware.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]