Think you're too small to be singled out? You could be just who the spammers are looking for...
Published: 28 October 2005 17:40 GMT
Most email users are familiar with large-scale spam broadcasts containing generic offers such as medications or financial services, or notorious scams sent out to random millions of recipients. But one security expert has warned that smaller companies are increasingly being singled out with highly targeted email scams.
Enrique Salem, senior VP security products at Symantec, highlighted to silicon.com a couple of cases where small companies have been targeted with scams tailored just to them.
For example, during a merger with a larger firm one small company began receiving emails addressed to its employees, apparently coming from the new parent company.
The emails invited employees to register for their HR benefits with their new employer.
With no reason to suspect it could be anything other than a genuine email from their new employers, many staff submitted their personal details including name, date of birth and social security numbers.
"By the time the company realised what was going on it was too late, many of the employees had submitted their details," said Salem, who warned that such finely tailored scams look set to increase.
Salem said traditional threats such as viruses and bulk mail "are interesting and companies definitely still need to be protected against them but they are yesterday's problem".
He added: "Phishing and this level of socially engineered threat is today's problem." But even since the early days of crude phishing attempts Salem said "the approach has absolutely changed".
The problem, he said, is that scammers who pick their moment and exploit very precise windows of vulnerability actually appear more legitimate and can often steal as much information with one finely tailored email to hundreds as they may have got for a scatter-gun email to millions.
As such, Salem warned that companies need to be on the lookout more and more for scams which will be far harder to spot than the blunderbuss subtlety of generic 419 scams or product offers.
Earlier this week silicon.com highlighted the case of another finely tailored email scam which saw an apparent endorsement for one tech company's products emailed specifically to silicon.com, in an apparent attempt to gain coverage or a higher profile.
Electrical Power and Pharmaceuticals.The UK Country Head will be working for the pharmaceuticals side of the business where they are a branded ...
CVs submitted will be used by Church International Limited (CIL) for work finding services. Digital PM needed to work across microsites, banners and ...
Our mission is to be the leading UK Recruitment Firm' of choice for employees, jobseekers and employers. Make sure all problems of IT / Technical ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Tim Ferguson Exclusive: Former MySQL boss Marten Mickos talks open source Why Microsoft could become one of the "biggest friends of open source" and why Oracle getting its hands on MySQL could be "one of the biggest open source coups ever"...
Naked CIO Naked CIO: Cloud computing more expensive than we thought? Smart IT leaders will examine the impact of how they pay for tech