Michael Horowitz

Defensive Computing

Spear phishing evolves

. What's this?

TAGS:phishing, spear phishing
IT TOPICS:Cybercrime & Hacking

First came phishing, targeted at the masses.

Then came spear phishing, targeted at executives and other employees in possession of trade secrets.

Now, as Roger Grimes recently described it over at InfoWorld, spear phishing has evolved.

In the good old days, there was a fighting chance of detecting scam emails. Phishing attacks either sent the victim to a bad website or tried to coax the victim into opening an infected attachment, be it a PDF file, an EXE or another file type.

Now, according to Grimes:

...phishing writers are now creating emails that do not contain any obvious malicious links. They don't ask users to visit bogus Websites or to install unexpected software. Rather, they attempt to fool a user or system admin into opening up holes in the company's network defenses.

It's an interesting article, even if the specific example is not one that would apply to many people.

Forewarned is forearmed.

What is Tech Briefcase?

TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more

Bookmark content

Speed up your research efforts with content across the web.

Search and Store

Find the white papers you need. Create folders for any topic.

View Anywhere

Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.

Don't have an account yet?

Sandboxie offers spear phishing protection

Socially engineered attacks on business bank accounts

IMF data leak: Chief suspect China; World Bank runs

How to avoid future Epsilon breach email phishing scams

Today's Top Stories

Essential browser tools for Web developers

Hands on: The new iPad

Microsoft cuts the prices of some Office 365 plans

Google works to overhaul its search

Mozilla will start Firefox silent updates in June

Preston Gralla: Big backlash is building against Windows 8. Will Microsoft listen?

Hot Posts

Apple TV: exec says it's coming 'soon'

Posted by Jonny Evans |

Workforce IT program: A model for debt-free college education

Posted by Robert L. Mitchell |

Motorola updates its Android 4.0 upgrade plan -- and it isn't all good news

Posted by JR Raphael |

Free Insider Guide

Excel 2010 Cheat Sheet: Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.

Cybercrime and Hacking White Papers

Application Security Services - Government and Cyber Security: U.S. Public Sector Application Security Services bridge the gap between traditional application development processes and techniques, and the requisite security mechanisms needed to...
HP Cybersecurity Offerings: HP has been in the security business since our inception, providing critical security services to clients at every level of government and Fortune...
Streamline Compliance and Increase ROI: Streamline, simplify, and automate compliance related activities; especially those that impact multiple business units. This white paper from NetIQ, outlines solutions that will...

Cybercrime and Hacking Webcasts

WikiLeaks: How am I Affected?: The latest WikiLeaks episode has raised questions about how organizations and governments protect their sensitive information. While this incident was isolated, it has...
Analytics Without Limits: The Latest on Oracle Exalytics In-Memory Machine and Oracle Business Intelligence: Analytics at the Speed of Thought

What if you could run financial and operational planning cycles 10 times faster? Or monitor and adjust...
EMC and VMware Solution Track: The EMC and VMware Solution Track is a single destination for the most up-to-date resources on how EMC can enhance, extend and accelerate...

IT Newsletters

Get the latest technology news and analysis on critical issues in the enterprise.

Spear phishing evolves

Related Posts

Today's Top Stories

Hot Posts

Michael Horowitz's Archive

IT Topics