New Delhi, Nov 15, : , More than 35% of the 10,500 organisations were subject to a bait attack in September 2021 according to a new report. Bait attacks, also known as reconnaissance attacks, are a class of threats where the attackers attempt to gather the information that can be used to plan future targeted attacks.
Bait attacks (also known as reconnaissance attacks) are a type of threat where attackers try to collect information that can be used for future targeted attacks.They are usually emails with very short or even empty content, according to the report from cloud-enabled security solutions provider Barracuda Networks.
According to Barracuda Networks, these emails are often very brief or even unimportant in content.
The goal is to either verify the existence of the victim’s email account by not receiving any “undeliverable” emails or to get the victim involved in a conversation that would potentially lead to malicious money transfers or leaked credentials.
It is intended to verify victim’s email address by not receiving “undeliverable emails” or to get victim to engage in conversation that could lead to malicious money transfers and/or leaked credentials.
“As attackers work to make their phishing attacks more targeted and effective, they’ve started researching potential victims to collect information that will help them improve the odds that their attacks will succeed,” Murali Urs, Country Manager, India, Barracuda Networks, said in a statement.”As attackers strive to make their phishing attacks targeted and more effective, they have begun researching potential victims in order to collect information that can help them improve their chances of success,” Murali Urs (Country Manager, India), Barracuda Networks stated in a statement.
As the threats do not involve any text, phishing links or malicious attachments, it is hard for conventional phishing detectors to defend against these attacks.
Conventional phishing detectors are unable to protect against these threats because they do not contain any text, phishing hyperlinks or malicious attachments.Moreover, to avoid being detected, the attackers typically use fresh email accounts from free services such as Gmail, Yahoo or Hotmail to send the attacks.
To avoid detection, attackers often use new email accounts from free services like Gmail, Yahoo, or Hotmail to send their attacks.
To safeguard their employees from falling prey to bait attacks, organizations need to deploy artificial intelligence (AI) to identify and block them.
Organizations need artificial intelligence (AI), which can identify and block bait attacks to protect their employees.Traditional filtering technology is largely helpless when it comes to blocking bait attacks.
Bait attacks can be blocked by traditional filtering technologies that are largely ineffective.The messages carry no malicious payload and usually come from Gmail, which is considered highly reputable.
These messages are not malicious and come mostly from Gmail which is highly trusted.
As per the report, AI-based defence is a lot more effective as it exploits data extracted from multiple sources, including communication graphs, reputation systems and network-level analysis to be able to protect against such attacks.
According to the report, AI-based defense is much more effective because it uses data from multiple sources including communication graphs and reputation systems to protect against attacks.
Training is yet another factor that can help to a large extent.
Another factor that can be helpful is training.Trained users can recognize and report bait attacks that may still land in users’ inboxes.
Users who have been trained can identify and report any bait attacks that might still be in their inboxes.So organisations must conduct security awareness training and simulation campaigns and encourage users to report these attacks to the IT and security teams.
Security awareness training must be conducted and simulation campaigns should be run to encourage victims to report the attacks to IT and security personnel.
wh/khz/bg #bait #attack #September #businesses #Delhi
.
