Posted 06/25/2015 at 8:57 AM
Posted 2 years ago
Hackers who employ phishing as their main method of attack have found a new target base — and it’s not one observers would have guessed outright.
According to reports compiled by the security firm Proofpoint, phishers are going after those in middle management.
As the firm’s vice president, Kevin Epstein stated, “2014 was clearly the year that attackers went corporate, and they targeted middle management because it’s profitable.”
The study was conducted over the course of a year.
Middle management figures are under hefty pressure due to their workload, and as a result are more prone to click on emails in haste — which led to the rate of their clicking on malicious emails being doubled in that year of research as opposed to the year before.
Another factor lies in the amount of emails middle management tends to receive, which can range from 100 to 200 daily.
The emails also come equipped with fake voicemail and fax attachments.
The combination leads to phishers gaining access undeterred and without much crackdown from unaware cyber-defense professionals in house.
Proofpoint and other companies suggest that the best way to combat these phishing attacks is to install defense programs that are multi-layered and provide protection for all employees.