29 July,2021 08:35 AM IST | New Delhi | IANS
Photo for representational purpose. Picture Courtesy/iStock
IT staffers receive on an average up to 40 targeted phishing attacks a year, revealed a report by Barracuda, a cloud-enabled security solutions provider, on Wednesday.
The report, titled Spear Phishing: Top Threats and Trends Volume 6 -- Insights into attackers' evolving tactics and who they're targeting, suggests that all employees, not just top executives, must be prepared for spear-phishing attacks.
Between May 2020 and June 2021, Barracuda researchers analysed more than 12 million spear phishing and social engineering attacks impacting more than 3 million mailboxes at over 17,000 organizations.
They found that one in 10 social engineering attacks are business email compromises (BEC). BECs usually look for quick monetary return, targeting IT teams.
Also read: Chinese hackers target SBI users via phishing, free gift scams
An average organisation is targeted by over 700 social engineering attacks each year. About 77 per cent of BEC attacks target employees outside of financial and executive roles.
While a CEO is likely to receive 57 targeted phishing attacks in a year, one in five BEC attacks target employees in the sales roles and IT staffers receive an average of 40 targeted phishing attacks in a year.
About 43 per cent of the phishing attacks impersonate Microsoft.
"Cybercriminals are getting sneakier about who they target with their attacks, often targeting employees outside the finance and executive teams, looking for a weak link in your organisation," said Don MacLennan, SVP, Engineering & Product Management, Email Protection, Barracuda, in a statement.
"Targeting lower level employees offers them a way to get in the door and then work their way up to higher value targets. That's why it's important to make sure you have protection and training for all employees, not just focus on the ones you think are the most likely to be attacked," MacLennan added.
This story has been sourced from a third party syndicated feed, agencies. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever
