Hack back: Spear phishing and how you can avoid it

Molly Wood May 21, 2013
HTML EMBED:
COPY

Hack back: Spear phishing and how you can avoid it

Molly Wood May 21, 2013
HTML EMBED:
COPY

The Chinese military has resumed hacking government agencies and American companies after a three-month hiatus, according to private security firm Mandiant.

The news comes as “spear phishing”, a form of targeted hacking, is drawing a lot of attention. An organization calling itself the Syrian Electronic Army has used the tactic to attack several media organizations, most recently the Financial Times.

“When somebody singles you out as an individual to target with an attack, we call it ‘spear phishing’,” says Chester Wisniewski with the cyber security firm Sophos. “They find some way of convincing you that they are the target brand and get you to type in your password and give it to them.”

Wisniewski says the best way to avoid getting spear-phished is not go to any password-protected websites from a link recieved via email. Instead, users should access social media and banking websites directly via a browser.

There’s a lot happening in the world.  Through it all, Marketplace is here for you. 

You rely on Marketplace to break down the world’s events and tell you how it affects you in a fact-based, approachable way. We rely on your financial support to keep making that possible. 

Your donation today powers the independent journalism that you rely on. For just $5/month, you can help sustain Marketplace so we can keep reporting on the things that matter to you.