Account Takeover Attacks Become a Phishing Fave

  /     /     /  
Publicated : 23/11/2024   Category : security


Account Takeover Attacks Become a Phishing Fave


More than three-quarters of ATOs resulted in a phishing email, a new report shows.



Why spoof an email address for phishing messages when you can hijack an account and send them from the real one? Thats the theory behind account takeover (ATO) attacks, and its one being put into practice in a growing number of criminal cases.
According to a new report from Barracuda, which draws on a study that looked at 50 randomly selected organizations, nearly 40% of respondents reported at least one ATO attack in the second quarter of 2018.
On average, when a company got compromised, the compromise resulted in at least 3 separate account takeover incidents, according to the report. Of the incidents, 78% resulted in phishing email being sent.
Cybercriminals are able to professionally customize emails to trick even the most discerning eye all the way up to the CEO level, says Ryan Wilk, vice president of customer success at NuData Security. These phishing emails trick victims into clicking on links or on documents that appear legitimate, only to automatically download key loggers or other malware tools used to harvest credentials. 
The reports authors noted that their results could have underreported the actual incidence of ATO attacks since they relied on incidents reported by companies. Many organizations either arent aware that theyve been the victim of such an attack or are reluctant to admit to having been victimized.
Read more 
here
.

Last News

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security

▸ Researchers create BlackForest to gather, link threat data. ◂
Discovered: 23/12/2024
Category: security

▸ Travel agency fined £150,000 for breaking Data Protection Act. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Account Takeover Attacks Become a Phishing Fave