Phishing is nothing new, however it remains a tactic more powerful than ever.
In a recent engagement, Chris Carlis, Security Analysis Consultant, capitalized on local news about an upcoming storm to build a phishing testing campaign aimed at an organization to offer a work from home program. All they had to do was log in and take a brief survey.
The scary part is, 50% of workers responded giving the technical testing team full access to organization's VPN. Do you think your organization is educated enough to look out for these types of tactics? Watch the video to learn more about this the dangers of phishing.
So a lot of times we will do social engineering or phishing engagements and we try to mimic what the bad guys do, we'll use local and current events when building our phishing campaign. Recently we were doing an engagement where there had been severe winter storms where roads were closed and we knew that getting to work for this organization was going to be a hassle, so we crafted a phishing campaign that was a survey that essentially said we are building a work from home program and if you are interested in taking part in this work from home program, log into this website and fill out a brief survey.
It was a popular idea, we had over 50% of respondents provide usernames and passwords for their network just to be included in this survey, we were able to use those credentials to log into their VPN, and gain access to their internal network. So obviously this comes down to user education and continuous testing of users to make sure the message is getting through that phishing is something everyone in the organization that everyone needs to be be looking out for.
We generate around 2 billion events each month. With Secureworks, we are able to crunch down that number to 20-30 high fidelity alerts — and that makes my team's job much easier.
Sunil Saale, Head of Cyber and Information Security, Minter Ellison
Red Cloak™ Threat Detection and Response isn’t just the next generation of SIEM, it’s an evolution.
David Levine, CISO, Ricoh Group
The old approaches to cybersecurity are no longer adequate. It’s time for something new. Layered defenses can create almost as many problems as they solve, and security teams struggle to keep up with the threat. What you need is context across all your layers of defense with the right people, processes, and technology working together in concert. That’s how Secureworks can help. Using 20+ years of industry knowledge, advanced analytics, industry-leading threat intelligence, and the network effect of more than 4,000 customer environments, we provide world-class cybersecurity solutions to customers around the globe. This unmatched experience empowers our customers to be Collectively Smarter. Exponentially Safer.™
Our Managed Detection and Response (MDR) solution is comprehensive, powered by our cloud-native software Red Cloak™ Threat Detection and Response that uses AI and machine learning to deliver better outcomes for your security operations. MDR unifies telemetry from your existing security technology to maximize visibility, reduce complexity, and enable you to move at the speed of the threat. Learn more about how Managed Detection and Response uses contextualized visibility to improve your organization’s security posture.