|
|
|
Avalanche is the name of the group associated with the vast majority of phishing emails. According to a report from the anti-phishing working group (APWG), this Eastern European gang is responsible for about two-thirds of all phishing attacks during the second half of 2009. While phishing attacks are technically an outbound attack method, it specifically requires insiders to fall prey to them. Usually modern phishing attacks have a link that attempt to drive the ususpecting victim to a malicious website where malware will be installed and compromise the users system or where the user will be asked to enter in sensitive information which can be used to commit identity theft or fraud. Either way, one of the very best ways to reduce your exposure to phishing emails directed at your employees is to have a web content filtering program. These malicious websites would not be part of the allow policy and if an insider did happen to click on one of these links, the site would be blocked. This saves their identity as well as saves your company from potential compromise.
www.darkreading.com/vulnerability_management
www.computerworld.com/Report_blames_Avalanche_group_for_most_phishing