Security Tip of the Week - Malicious Multi-Vector Attacks

You can probably spot a phishy email from a mile away. But what if you get an email AND a phone call? Would you respond then?

You probably know that cybercriminals can use malicious emails and phone calls to steal your sensitive information. But did you know that cybercriminals can use multiple attack vectors simultaneously to make their attacks even more effective? While it may be easy to spot a single suspicious email or phone call, multi-vector attacks can be difficult to catch.

According to a new IBM report, a standard email-only attack yielded a 17.8% click rate from its target audience. When cybercriminals paired the same email attack with a matching phone call campaign, the click rate increased to 53.2%. That’s three times the email-only click rate! By using multiple attack vectors at once, cybercriminals can make their messages seem more credible and urgent.

Don’t fall for this scam! Follow the tips below to keep your WhatsApp account secure:

• Be cautious of who you call on WhatsApp. Only call phone numbers that belong to trusted contacts.
• Verify that the call forwarding prefix matches the country that your contact is calling from. For example, if your contact has a United States phone number, their phone number should include the American prefix *72. 
• Learn about common social engineering red flags. Educating yourself on common scam tactics can help you avoid social engineering attacks.

Stop, Look, and Think. Don’t be fooled.

KnowBe4 is the world’s most popular integrated platform for awareness training combined with simulated phishing attacks. Let Keller Schroeder show you how KnowBe4 has helped thousands of organizations just like yours manage the continuing problem of social engineering. Contact us today to learn more.

DISCLAIMER : Any non-technical views expressed are not necessarily those of Keller Schroeder or its employee-owners.