David Bisson
Dec 8, 2015
http://www.tripwire.com/state-of-security/wp-content/uploads/cache//Fancy-Bear/2817693511.jpg
Last month, Microsoft released a report on the advanced threat group Fancy Bear.
This alert, as noted by security blogger Graham Cluely, explains how the group—otherwise known as “Sofacy,” “Sednit,” “STRONTIUM,” and “APT 28?—stalks mailing lists, social media sites, and public forums in search of potential victims from whom it can steal login credentials. Here Fancy Bear makes use of spear phishing techniques, a form of attack that relies on a lack of awareness among targets, to get what it wants.
Spear phishing is a significant concern for enterprises, and one can only hope that organizations everywhere interpret Microsoft’s report as an impetus to reduce their attack surfaces and implement some security awareness training among their staff.
But that’s not the end of the story for Fancy Bear. Unfortunately, phishing emails are just the tip of the iceberg of what this particular advanced threat group is capable.
Full Article
Userlevel 7
Awareness and caution is the best approach to exploits. Also training on a ongoing basis is important. However to the average user as the saying goes "out of sight and out of mind" is one of the downfalls.
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.