Connect with us

Top Stories

KnowBe4 Releases Q1 2018 Top-Clicked Phishing Report; Shows Bad Actors Preying on School-Related Security Incidents

Published

on

KnowBe4 Releases Q1 2018 Top-Clicked Phishing Report; Shows Bad Actors Preying on School-Related Security Incidents

KnowBe4, the world’s largest popular security awareness training and simulated phishing platform,today shared its Top 10 Global Phishing Email Subject Lines for Q1 2018. The results are compiled from analyzing data of KnowBe4 users. While the results show that users, when delivered a simulated phishing test, still continue to open messages with a mix of subject lines related to personal and company notifications, KnowBe4 found an alarming trend with ‘in-the-wild’ emails. These messages, which based on actual messages they received and reported to their IT departments, show the top three subject lines relate to security concerns on school campuses.

This comes at a time when phishing emails continue to plague organisations. Just this month the U.S. State Department warned its staff against a “tidal wave” of malicious email meant to trick users into opening them. Verizon’s 2018 Data Breach Investigations Report, also issued this month, notes that phishing emails account for 98% of all social engineering related incidents and breaches. And while hackers have always used topical news stories to color their phish attempts, the rise in ‘in-the-wild’ emails related to campus security incidents highlights the emotional depths to which these bad actors will go to breach an organisation.

“Hackers do what works – and what works is manipulating a human’s psyche to make them feel curious, important or, sadly, scared. As technical controls continue to improve at thwarting automated attacks, hackers are upping their sophistication at bypassing technical controls through the use of social engineering,” said Perry Carpenter, chief evangelist and strategy officer at KnowBe4.

KnowBe4 understands that humans the attack surface of choice for cybercriminals. The company examined tens of thousands of email subject lines from simulated phishing tests to uncover just what makes a user want to click. They also examined ‘in-the-wild’ email subject lines that show actual emails users received and reported to their IT department as suspicious.

The Top 10 Most-Clicked General Email Subject Lines Globally for Q1 2018 include:

  1. A Delivery Attempt Was Made                                                   21%
  2. Change of Password Required Immediately                         20%
  3. W-2                                                                                                        13%
  4. Company Policy Update for Fraternisation                            10%
  5. UPS Label Delivery 1ZBE3112TNY00015011                            10%
  6. Revised Vacation and Time Policy                                              8%
  7. Staff Review 2017                                                                             7%
  8. Urgent Press Release to All Staff                                                5%
  9. Deactivation of (email) in Process                                             4%
  10. Please Read: Important from HR                                                2%

*Capitalisation and spelling are as they were in the phishing test subject line
*Email subject lines are a combination of both simulated phishing templates created by KnowBe4 for clients, and custom tests designed by KnowBe4 customers

When investigating ‘in-the-wild’ email subject lines, KnowBe4 found the more common included: 

  • IT DESK: Security Alert Reported on Campus
  • IT DESK: Campus Emergency Scare
  • IT DESK: Security Concern on Campus Earlier
  • Amazon: Billing Address Mismatch
  • Password Review
  • Urgent Security Event: Your account details were found online
  • Wells Fargo: New device detected
  • Microsoft: Updates to our terms of use
  • GasBuddy: Major car recall announced today
  • CNN: Facebook-Cambridge Analytica Apology Tour

*Capitalisation and spelling are as they were in the phishing test subject line
*In-the-wild email subject lines represent actual emails users received and reported to their IT department as suspicious. They are not simulated phishing test emails.

Carpenter continued, “Again, as the addition of Facebook-Cambridge Analytica shows, we see news stories influencing the social engineering emails that hackers send. Cybercriminals expect that users will always be eager to correct a wrong address or to ensure that their bank accounts aren’t being breached. What’s not expected is a user population that has been properly trained to identify suspicious emails, no matter how well-disguised or emotionally charged they are. People are the last line of defence and it continues to be more and more important that organisations take this position seriously by, first and foremost, ensuring their users are properly trained.”

Businesses that are not already working with KnowBe4 to train their workforce into an effective last line of defence can utilisea number of free tools at www.knowbe4.com to test their users and their network.

Top Stories

Duo glide around world’s largest fountain in Dubai

Published

on

Duo glide around world's largest fountain in Dubai 1

Paragliders Llorens and Goberna take magical flight above the Palm Fountain.

Horacio Llorens and Rafael Goberna defied gravity to perform The Breaking Pointe flight around the world’s biggest fountain at The Pointe, Palm Jumeirah in Dubai. Here is all you need to know:

– Spaniard Llorens is a five-time world champion and Infinity Tumbling Guinness World Record holder, who has performed a series of spectacular projects during the last five years including paragliding with a flock of starlings and with the beautiful Aurora Borealis as a backdrop.

– Brazilian Goberna was a Guinness Book of World Records winner at only 12-years-old and, in December 2016, he took to the skies above one of the seven wonders of the natural world when paragliding at Iguazu Falls.

– This time around, the duo teamed up in Dubai to showcase The Palm Fountain at the Pointe, Palm Jumeirah. They overcame a tricky preparation period to expertly glide between the fountain’s powerful jets of water.

– Spanning across the boulevard, the Palm Fountain features two giant floating platforms covering 14,000 square metres of sea water. Reaching an impressive 105 metres high and lighting up the Dubai sky with 3,000 LED lights, the fountain “dances” to hit songs from sunset until midnight.

– They undertook training first at Paramotor Desert Adventure on January 12 to test out their brakes and motors with technician Ramon Lopez finally arriving after being held up by the heavy snow in Madrid.

– Training was crucial for the challenge of flying during the night with low visibility as safety director Alan Gayton ensured they had a reserve parachute in case of a technical issue with the main parachute. Llorens and Goberna also had to study the movement of the water with great precision in order not to get caught up in the jets of water

– Flying over water, it was also mandatory to have a lifejacket with rescue boats, jet skis and divers on hand which came handy when Goberna suffered a technical malfunction on the first January 14 practice run.

– After repairs long into the night, they returned to Paramotor Desert Adventure to test out the motors again before completing the stunning flight on January 15 with Llorens and Goberna performing in harmony.

– Llorens, 38, revealed: “As soon as we got the opportunity, we wanted to fly there. We needed to know the area really well beforehand and we needed to know how to ‘play’ with the fountain – this was new for us. Such strong streams of water shooting 100 metres up is a lot, so we had to be really prepared.”

– Goberna, 26, explained: “The motor wasn’t flying so good because, prior to arriving in Dubai, it was last used in Europe at high altitude. I needed to adjust the carburettor in the air inside the motor. In the first practice flight over the water, I broke one propeller. I really couldn’t understand what was happening and then another one broke. Eventually, a backup motor was required. After a long journey, the final result was beautiful! The team worked incredibly hard to make it.”

– Llorens added: “The highlight for me was playing between the super shooters with Rafael, because it’s something we’ve never done before; it felt really new and really powerful.”

Continue Reading

Top Stories

EU sets itself jobs, training and equality targets for 2030

Published

on

EU sets itself jobs, training and equality targets for 2030 2

By Jan Strupczewski

BRUSSELS (Reuters) – The European Commission on Thursday announced goals for the 27-nation bloc to reduce poverty, inequality and boost training and jobs by 2030 as part of a post-pandemic economic overhaul financed by jointly borrowed funds.

The EU executive arm said the European Union should boost employment to 78% in 2030 from 73% in 2019, halve the gap between the number of employed women and men and cut the number of young people neither working nor studying to 9% from 12.6%

“With unemployment and inequalities expected to increase as a fallout of the pandemic, focusing our policy efforts on quality job creation, up- and reskilling and reducing poverty and exclusion is therefore essential to channel our resources where they are most needed,” the commission said.

The goals, which will have to be endorsed by EU leaders, also include an increase in the number of adults getting training every year to adapt to the EU’s transition to a greener and more digitalised economy to 60% from 40% now.

Finally, over the next 10 years, the EU should reduce the number of people at risk of poverty or social exclusion by 15 million from 91 million in 2019.

“These three 2030 headline targets are deemed ambitious and realistic at the same time,” the commission said.

The goals are part of the EU’s set of 20 social rights, agreed on in 2017, to make the EU more appealing to voters and counter eurosceptic sentiment across the bloc.

They say everybody has the right to quality education throughout their lives and that men and women must have equal opportunities in all areas and be paid the same for work of equal value.

The unemployed have the right to “personalised, continuous and consistent support”, while workers have the right “to fair wages that provide for a decent standard of living”.

(Reporting by Jan Strupczewski; Editing by Nick Macfie)

Continue Reading

Top Stories

UK aero-engineer Meggitt eyes return to growth after pandemic slump

Published

on

UK aero-engineer Meggitt eyes return to growth after pandemic slump 3

LONDON (Reuters) – British engineer Meggitt said that it could return to profit growth in 2021 provided there are no further lockdowns, despite a weakening in the struggling aviation market at the end of 2020 and early this year.

Pandemic restrictions halted much flying globally last year and forced plane makers Boeing and Airbus to cut production rates, dragging down suppliers like Meggitt, which makes and services parts for such aircraft.

Meggitt’s underlying operating profit plunged by 53% to 191 million pounds ($267 million) in 2020, it said on Thursday, despite continued growth in its defence business which makes parts for military jets and accounts for about 45% of the business.

Meggitt, however, said it expected air traffic to recover in the second half of the year which would help it return to profit growth over the year, although its guidance for flat revenue disappointed analysts who had expected growth of 6%.

Meggitt’s Chief Executive Tony Wood said in November that he had expected flying to start to recover by Easter, but new variants have led to more restrictions and delayed the recovery.

“It has gone back a couple of months… it’s now very much in the summer,” Wood said of the recovery in an interview on Thursday.

Further in the future, Meggitt is positioning itself for the move to lower emissions flying, and its sensors and electric motors will be used on electric urban air mobility platforms, such as flying taxis, and in hybrid aeroplanes being developed.

But Meggitt said new tax breaks announced in Britain’s annual budget on Wednesday aimed at encouraging investment would not change its plans.

“Yes, it will be a benefit. Are we looking at any acceleration as a result specifically of that? Not really,” Woods said.

Shares in Meggitt were down 1% to 427 pence at 0943 GMT. The stock has risen by 50% since news of a COVID-19 vaccine last November, but is still down 23% on where it was pre-pandemic.

($1 = 0.7165 pounds)

(Reporting by Sarah Young; Editing by Alistair Smout and Susan Fenton)

Continue Reading
Editorial & Advertiser disclosureOur website provides you with information, news, press releases, Opinion and advertorials on various financial products and services. This is not to be considered as financial advice and should be considered only for information purposes. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third party websites, affiliate sales networks, and may link to our advertising partners websites. Though we are tied up with various advertising and affiliate networks, this does not affect our analysis or opinion. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you, or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish sponsored articles or links, you may consider all articles or links hosted on our site as a partner endorsed link.

Call For Entries

Global Banking and Finance Review Awards Nominations 2021
2021 Awards now open. Click Here to Nominate

Latest Articles

Newsletters with Secrets & Analysis. Subscribe Now