A pressing concern for many of my financial clients at the moment relates to how they should be responding to phishing attacks. Phishing attacks exploit weaknesses in the standard email protocols. These allow attackers to impersonate a financial organization, usingthe same techniques as spammers and, in many cases, even using the same shared lists of email addresses. The aim is to persuade the recipient to supply confidential information to the attacker through a corrupted or fake instance of the website. As with any electronic threat, there are multiple vectors for possible attack. While phishing attacks rely heavily upon the social engineering aspects of forged emails to be statistically successful, there are still a number of things that I can advise my clients to do to protect themselves.
展开▼