Geeks for your information News Privacy & Security News v
Spear phishing psychology
Spear phishing psychology
harlan4096 Online
MalWare Zoo Team
*******
Posts: 16,311
Threads: 10,322
Thanks Received: 9,367 in 7,513 posts
Thanks Given: 10,350
Joined: 12 September 18
#1
Information  25 January 19, 09:27
[Image: phishing-psychology-featured-1-1024x672.jpg]
Quote:When speaking about vulnerabilities, we generally mean coding errors and weaknesses in information systems. However, other vulnerabilities exist right in a potential victim’s head.

It’s not a question of lack of awareness or neglect of cybersecurity — the way to deal with those problems is more or less clear. No, it’s just that the user’s brain sometimes functions a little differently than IT security gurus would like, under the influence of social engineering.

Social engineering is essentially a fusion of sociology and psychology. It is a set of techniques for creating an environment that leads to a predetermined result. By playing on people’s fears, emotions, feelings, and reflexes, cybercriminals can gain access to useful information. And it is largely this “science” that lies at the heart of most of today’s targeted attacks.

Four main feelings that scammers prey on:
  • Curiosity

  • Pity

  • Fear

  • Greed
It wouldn’t be right to call them [i]vulnerabilities[/i]; they are simply natural human emotions. Perhaps a more apt description would be “channels of influence” through which manipulators try to sway their victims, ideally in such a way that the brain is actuated automatically, without the application of critical thinking. To achieve this, cybercriminals have plenty of tricks up their sleeve. Sure, some ploys work better on some people than others. But we decided to take a look at a few of the most common, and explain exactly how they are used.
Full reading: https://www.kaspersky.com/blog/phishing-...ogy/25440/
[-] The following 1 user says Thank You to harlan4096 for this post:
  • Deep900
Find
Reply
Deep900 Offline
Member
***
Posts: 185
Threads: 64
Thanks Received: 448 in 184 posts
Thanks Given: 784
Joined: 27 December 18
#2
25 January 19, 11:31 (This post was last modified: 25 January 19, 11:36 by Deep900.)
It's always important to evaluate the safety of an URL by seeing if it contains forms to insert data and it seems suspicious, this is mainly for FUD URLs (URLs that are not detected by security software). If we are not sure about the safety of a website do not insert any data in forms, this can prevent to get phished. Modern browser extensions and browser security filters should reduce the risk of visiting malicious URLs when browsing, but always keep the eyes open!
[-] The following 2 users say Thank You to Deep900 for this post:
  • harlan4096, Toligo
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
NanaZip 6.0 Update 7 (6.0.1711.0)
NanaZip 6.0 Update...harlan4096 — 06:10
Vivaldi 7.9 Build 3970.64
Vivaldi 7.9 Build ...harlan4096 — 06:09
Thunderbird 150.0.2 & Thunderbird 140.10...
Thunderbird 150.0....harlan4096 — 06:08
Brave v1.90.121 (Chromium 148.0.7778.96)
Release v1.90.121 ...harlan4096 — 06:07
QOwnNotes
26.5.6 Note folde...Kool — 06:07

[-]
Birthdays
Today's Birthdays
avatar (39)omapek
avatar (48)Geraldtuh
Upcoming Birthdays
avatar (28)akiratoriyama
avatar (48)Jerrycix
avatar (40)awedoli
avatar (82)WinRARHowTo
avatar (38)owysykan
avatar (49)beautgok
avatar (39)axuben
avatar (45)talsmanthago
avatar (31)mocetor
avatar (46)piomaibhaict
avatar (51)kingbfef
avatar (38)izenesiq
avatar (40)ihijudu
avatar (45)tiojusop
avatar (42)Damiennug
avatar (40)acoraxe
avatar (49)contjrat
avatar (41)axylisyb
avatar (44)tukrublape
avatar (44)knigiJow
avatar (46)1stOnecal
avatar (50)Mirzojap
avatar (36)idilysaju
avatar (40)GregoryRog
avatar (45)mediumog
avatar (40)odukoromu
avatar (46)Joanna4589

[-]
Online Staff
There are no staff members currently online.

>