Hack back: Spear phishing and how you can avoid it

Molly Wood May 21, 2013
HTML EMBED:
COPY

Hack back: Spear phishing and how you can avoid it

Molly Wood May 21, 2013
HTML EMBED:
COPY

The Chinese military has resumed hacking government agencies and American companies after a three-month hiatus, according to private security firm Mandiant.

The news comes as “spear phishing”, a form of targeted hacking, is drawing a lot of attention. An organization calling itself the Syrian Electronic Army has used the tactic to attack several media organizations, most recently the Financial Times.

“When somebody singles you out as an individual to target with an attack, we call it ‘spear phishing’,” says Chester Wisniewski with the cyber security firm Sophos. “They find some way of convincing you that they are the target brand and get you to type in your password and give it to them.”

Wisniewski says the best way to avoid getting spear-phished is not go to any password-protected websites from a link recieved via email. Instead, users should access social media and banking websites directly via a browser.

We’re here to help you navigate this changed world and economy.

Our mission at Marketplace is to raise the economic intelligence of the country. It’s a tough task, but it’s never been more important.

In the past year, we’ve seen record unemployment, stimulus bills, and reddit users influencing the stock market. Marketplace helps you understand it all, will fact-based, approachable, and unbiased reporting.

Generous support from listeners and readers is what powers our nonprofit news—and your donation today will help provide this essential service. For just $5/month, you can sustain independent journalism that keeps you and thousands of others informed.