Afternoon all!
We have a client who has recently had a couple of spearphishing attempts similar to those detailed in :
http://krebsonsecurity.com/2015/03/spoofing-the-boss-turns-thieves-a-tidy-profit/
Both times the finance department twigged before even responding but each time they have asked us if there is anything they can do to block it. The company has a meet the team page on their website and the employee is listed as the finance person. She is the only one getting these emails so it looks to be targeted at her specifically.
The emails were both purporting to be from the boss but they were one letter out, with the reply email address going to a completely different domain. So not that sophisticated but I'm thinking for every problem there should be an opportunity.
We do offer a spam solution (max mail) but this client currently goes through google for their email. I am far from 100% certain that such a targeted attack would be flagged up though by a standard spam filter. As it stands we have mirrored the advice at the end of the article I linked to but for a larger client with a large volume of daily financial requests I could see this being too burdensome.
Does anyone else have experience with this and what would you recommend?
We have a client who has recently had a couple of spearphishing attempts similar to those detailed in :
http://krebsonsecurity.com/2015/03/spoofing-the-boss-turns-thieves-a-tidy-profit/
Both times the finance department twigged before even responding but each time they have asked us if there is anything they can do to block it. The company has a meet the team page on their website and the employee is listed as the finance person. She is the only one getting these emails so it looks to be targeted at her specifically.
The emails were both purporting to be from the boss but they were one letter out, with the reply email address going to a completely different domain. So not that sophisticated but I'm thinking for every problem there should be an opportunity.
We do offer a spam solution (max mail) but this client currently goes through google for their email. I am far from 100% certain that such a targeted attack would be flagged up though by a standard spam filter. As it stands we have mirrored the advice at the end of the article I linked to but for a larger client with a large volume of daily financial requests I could see this being too burdensome.
Does anyone else have experience with this and what would you recommend?