A chain is only as strong as its weakest link. Computer security relies on a great number of links, hardware, software and something else altogether: you. The greatest threat to information security is actually people. Why strive to defeat encrypted passwords stored in computers, when those computers’ human users will turn them over willingly? The technique is known as social engineering. It could be a phone call at your desk “from IT” querying problems with your login details, or asking about those of our colleagues’. Or the more common technique of phishing – emails designed to solicit your credit card or login details by passing themselves off as legitimate emails from well-known banks or websites such as PayPal or eBay. This has evolved in spear phishing, in which known details about you personally gives the email even greater credibility. The latest ruse are emails purporting to be from the World Health Organisation about Ebola, with email subjects including:
- “Ebola Safety Tips – By WHO.”
- “What You Need To Know About The Deadly Ebola Outbreak,”
- “So Really, How Do You Get Ebola?,”
- “Is there ANY way to cure Ebola?”
- “The #1 Food Items You’ll Need In An EBOLA Crisis.”
But the link to the attached file which is described as health guidelines instead installs the DarkComet Trojan malware that gives attackers remote access to your computer. Any current event is fair game for cybercriminals if it can tempt you to click that link. Read more at: http://phys.org/news/2014-11-cybersecurity-weakest-link.html#jCp