Tag Archives: phishing

What Does Cyberinsurance Actually Cover? | Slate.com

So it came as a shock to the bank when its insurer, Everest National Insurance Co., ultimately refused to pay out a significant portion of the bank’s claimed losses of $2.4 million, offering instead only $50,000 on the grounds that the breaches were not covered by National Bank’s computer and electronic crime insurance rider. In June, National Bank sued Everest for breach of contract and a larger portion of the breach costs in a lawsuit that highlights just how nebulous and unhelpful cyberinsurance policies can be, as well as how little the companies purchasing those policies typically understand about their coverage.

Read More

Security Awareness: Phishing up the weakest links! | TekSec

phishing-security-awarenessWho (in their right mind) would like to appear as the corporate dunce who infected their company network (by clicking on an email attachment or url)? Not you, not me, and certainly not the PR department or the company CEO’s administrative assistant, or even the CEO himself.

Phishing is an activity that cybercriminals utilize to acquire personal and sensitive information. Whether it is an account username and password, credit card details, a social security number, or other personal data — it is designed to coax you into giving up your personal information for criminal gain. For those of us who have been unfortunate enough to click on a deceptive phishing link or email attachment, it is an event that most of us would probably rather forget.

Phishing it up

Most of us are aware that if an email arrives unsolicited and includes grammatical errors, we should just delete it and continue on with our day. Not all phishing emails contain bad grammar, unsolicited attachments, or immediately request sensitive information. Last summer I received an email that appeared quite genuine, so genuine in fact — that I almost became victim to a very clever phishing scheme.

Read More.

Spearphishing: The dirty email trick favored by the nastiest hackers – Technology on NBCNews.com

speargun_euro2You probably know to watch out for phishing attempts — broad, massive email efforts to get you to hand over personal financial information like a credit card number or to click on a website link that could allow malware to steal information from your computer. Theyre usually riddled with spelling errors and terrible formatting. Spearphishing is subtler, because its aimed at intelligence gathering. It “often takes the form of key personnel inside an organization being emailed a malicious file,” Graham Cluley of Sophos Security told NBC News Tuesday.

Read Article.