Subj : Re: Security Suites for c
To   : Arelor
From : Vk3jed
Date : Wed Aug 10 2022 20:11:00

-=> On 08-09-22 18:17, Arelor wrote to Atreyu <=-

 Ar> I recently had to help somebody make it through his anti-phishing
 Ar> training course and, while I think the material is not abyssmal, I
 Ar> think it was obsolete.

While there will always be some carpet bombers, I can see the increasing
sophistication of phishing attacks.  It's an arms race, but I try and keep my
awareness up to date.  I rely more on context these days - that parcel delivery
when I've ordered nothing, anything suspiciously "generic", password reset
notifications to the wrong email address (I have several for historic reasons),
and so on.

 Ar> The worst of them all are those who are crafted from stolen information
 Ar> only a reduced group of people is used to have. For example, I have
 Ar> seen cases in which some medical asociation we colaborate with had a
 Ar> data breach, and the data thieves used the stolen information to
 Ar> impersonate members of the asociation and try to get Doctors to provide
 Ar> them with secret information or with funds.

That's getting very sophisticated and worrying.

 Ar> You don't have to be a freak of nature to identify phishing attempts,

But it sure helps! :)

 Ar> but the new generation of attacks I see these days... I am sure it is
 Ar> VERY good at stealing money and data from people who is not familiar
 Ar> with the digital environment. A grandpa who has just made his first
 Ar> online purchase ever won't be worried if the "parcel delivery agency"
 Ar> (aka phisher who has compromised the delivery agency's IT) asks him for
 Ar> extra information to deliver the order.

Mowst people are security issues waiting to happen, sadly.


.... All wiyht.  Rho sritched mg kegtops awound?
=== MultiMail/Win v0.52
--- SBBSecho 3.10-Linux
 * Origin: Freeway BBS Bendigo,Australia freeway.apana.org.au (21:1/109)

.