IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Businesses can't ignore ‘spear phishing’ attacks

Attacks this week against personal webmail accounts have raised the profile of phishing, which could also be used against businesses.

A security researcher has warned that people are just as likely to fall for phishing attacks on work PCs as on their own, especially through spear phishing' incidents where emails are crafted to fool specific employees.

Neil Campbell, global manager of security solutions at Dimension Data, said that most consumer phishing attacks were usually targeted at internet banking systems. In the corporate world, phishing emails are generally looking for confidential information about security mechanisms.

Such spear phishing attacks are better targeted than standard phishing attempts, as they try to get the employee to believe that the email is coming from a genuine business partner or organisation.

"There comes a time when a message addresses you directly and talks about departments in your workplace, and maybe some projects that are active, and maybe makes a specific information request... It gets difficult to pick fact and fiction," Campbell said.

"Anyone can potentially fall example to this, and you do see a gradual increase in sophistication. With crime you get more competition, and with more competition you get improved technique," he added.

One example of this was where the director of the FBI Robert S. Mueller said in a speech that he almost fell victim to a phishing attack, although part of his job was to protect others from the risk of cyber crime.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

Education and government most at risk from email threats
phishing

Education and government most at risk from email threats

26 Nov 2021
Attackers use CSS to fool anti-phishing systems
phishing

Attackers use CSS to fool anti-phishing systems

11 Nov 2021

Most Popular

Former Uber security chief to face fraud charges over hack coverup
data breaches

Former Uber security chief to face fraud charges over hack coverup

29 Jun 2022
Macmillan Publishers hit by apparent cyber attack as systems are forced offline
Security

Macmillan Publishers hit by apparent cyber attack as systems are forced offline

30 Jun 2022
FCC commissioner urges Apple and Google to remove TikTok from app stores
data protection

FCC commissioner urges Apple and Google to remove TikTok from app stores

29 Jun 2022