Weekly SEA

Please Do Not Feed the Phish
Comment: Because advanced persistent threat (APT) groups know that humans are the weakest link in cybersecurity, they often choose phishing as the initial attack vector. Just one well-crafted email could be all it takes to trick a target into clicking on a malicious link or opening a malware-laden attachment, thus allowing an APT to bypass filters and security appliances and access the victim’s network undetected. As no organizations or individuals are immune to this type of threat, providing social engineering awareness training and limiting user account privileges are essential components of a comprehensive security strategy.

Bamboozled: Top Scams to Watch for in 2018
Comment: If the scamming activity that occurred throughout 2017 was any indication, we will likely see as much, if not more, in 2018, especially as we approach tax season. As we begin this new year, stay ahead of the scammers by remembering to never share sensitive personal information over the phone or through unsecured email. Also, keep in mind that no legitimate company, organization, or government agency will ever initiate a phone call to demand immediate payment and they will certainly not require payment in the form of gift cards.