ML
    • Register
    • Login
    • Search
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups

    Smart Phishing Spams worrying me

    IT Discussion
    spam phishing
    5
    7
    714
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Emad R
      Emad R last edited by Emad R

      Hello,

      For the last week my organization has been reciving a ton of spam, but what have changed is now the signature of those bad emails are signed by real name from the organization and we are very big organization in multiple countries, and all the names singed are from the same country.

      The mail filter detects them, but I wonder how did those spam emails have legit names in them and what I can do to stop, it seems those real names got leaked somewhere (Social Media) ? cause they make the users less susceptible that it is bad email.

      Here is an example of bad link in it :

      https://www.virustotal.com/#/url/8415c7483cf73b9e4a9d58a2b5fffe284257320ed9e1006b394998d25248dd24/detection

      1 Reply Last reply Reply Quote 0
      • scottalanmiller
        scottalanmiller last edited by

        Only thing you can really do is train users.

        Emad R 1 Reply Last reply Reply Quote 1
        • Emad R
          Emad R @scottalanmiller last edited by Emad R

          @scottalanmiller

          But they are the weakest link, and Good Morning. I assume you are in Italy right so its ~8 AM there ,and its 9 AM here.

          Does it make sense to (we use office 365) to remove the spam notification message, and rely on Microsoft to delete them entirely ? talking about the email from quarantine Microsoft with an option to release to inbox or not.

          my users are doctors and medical folks and that means they are the worst kind when it comes to IT

          JaredBusch 1 Reply Last reply Reply Quote 1
          • JaredBusch
            JaredBusch @Emad R last edited by

            @emad-r he is in Texas now. It is 1am.

            1 Reply Last reply Reply Quote 1
            • coliver
              coliver last edited by

              This is called spear phishing or targeted phishing. There isn't much you can do about it from a technical perspective. Train your users is about the only option.

              scottalanmiller 1 Reply Last reply Reply Quote 3
              • dbeato
                dbeato last edited by

                Take a look at this:

                https://getgophish.com

                1 Reply Last reply Reply Quote 0
                • scottalanmiller
                  scottalanmiller @coliver last edited by

                  @coliver said in Smart Phishing Spams worrying me:

                  This is called spear phishing or targeted phishing. There isn't much you can do about it from a technical perspective. Train your users is about the only option.

                  That's really the case. The thing about spear phishing is that it is all but impossible to conidently detect unless you are the human recipient and can verify the details in some other manner.

                  1 Reply Last reply Reply Quote 1
                  • First post
                    Last post