data breaches of personal information and emails available in the dark web.
Unlike the usual Ebay or invoice announcements, these latest attempts hitting Avira ask for the recipients help to solve some issues with undelivered emails. It’s a perfectly reasonable request – but it also is completely bogus. They go to show that people – even if they are not an Avira manager – need to be cautious over any attempt to get them to enter passwords or credentials into a popup or webpage.
The best defense against spearphishing is not technical – it’s you. And, you are also the last line of defense as many phishing attempts have already been filtered out by your network’s spam filters. It is up to you to visually inspect emails for signs of bogusness.
The prime way to do this is by hovering your mouse courser over suspect links. This will help uncover deceptive URLs with names that are similar – but not quite the same – as legitimate one.
Marian Schneider, an IT – Security Analyst at Avira, recently reminded staff of their need for cautious skepticism over incoming emails, laying out the following 6 questions everyone should answer before clicking on any link or email:
As mentioned in Marian’s points – and in Google’s recent phishing test – only you can really stop spearphishing. It is up to you to put on your skeptic hat before clicking. The real-life warning to “look before you leap” still applies in the online era.