Dealing with a spoof mail attacks and phishing mail attacks a little story with a sad end - part 1#9 | Eyal Doron | o365info.com

Dealing with a Spoof mail attack and Phishing
mail attacks | A little story with a sad end
Part 1/9

Eyal Doron o365info.com
The common feeling of IT persons is –
that they know and understand everything that is
related to security and threats in their environment.

The simple truth is that most of the time, we don t really
have any idea, about the threats and dangers that exist,
and what is happening under our noses.

You fell a powerful header which brings down the floor

In each security event, in which we discover the
damage which was caused by the Spoof Phishing
mail attacks, we act the same – panic!

Shout and scream anyone you can!

The silent grief phase

The only difference between those events that
organizations experience is - the faces and the names of
the people who are involved in the process.

Let me tell you a story that happened long
long ago in a far away land

Scene number 1/9
1
2 3 4 5 6 7 8 9

It's 9:30 in the morning; the sun is shining.
In our little story, your name is Jeff, and you are the CIO of a
company that belongs to the financial sector named –
Don t do anything and hope that everything will work
out by itself .

You're sitting in your Office, drinking a cup of hot coffee
(no sugar because you need to maintain your weight).
You log on to Facebook, and start to watch some
boring video of a dog or a cat doing something.

Your phone is ringing.
Your gut feeling is telling you that something
is wrong!
On the line is Suzan, the personal assistant of Brad, the company CEO.
Suzan is asking you to urgently come to Brad s office.

The facial expression of Brad is grave and serious.
This morning, after a brief conversation with David,
I understand that I was a victim of an ugly fraud!
You enter Brad s room.
Brad asks you to close the door behind you.
Brad says:
"Jeff, let's make it simple and straight-forward.
Yesterday, I got an E-mail message from David (David is the company CFO)
that asked me to deposit 500, 000$ in a specific bank account.
The purpose of the deposit was an initial payment for a big acquisition deal,
which is about to take place soon.

1. I want my money back!
2. I want you to locate the person that carried out this ugly
fraud + report the information to the police!

3. I demand to know - how can it be that our security
infrastructure that costs us so much money, didn t
recognize and blocked this attack, and I demand to know
who to blame, and who is the person that is
responsible for this failure!

3 4 5 6 7 8 9
2
1
Scene number 2/9

You can hear your heart pounding.

Billy enters your office.
You ask Billy to close the door behind him.
You instantly call Billy (the company IT manager), and ask him
firmly to reach your office immediately!

You inform Billy about the "mess", waving your finger in his face.
You inform Billy that you need instant answers and that
someone will have to pay the price!

4 5 6 7 8 91 2
3
Scene number 3/9

Billy rushes into his office, finds Bob (the Help desk manager), and
informs him about the "issue".
Billy asks Bob to call the IT company that planned and built our mail infrastructure
immediately, and inform them that they will have to provide an accurate answer
to the following questions:

1. How did the hostile element manage to hack our system, despite the advanced
security infrastructure that was supposed to protect our mail infrastructure?
2. How to identify with certainty the hostile element, and locate the hostile element
which carried out the attack?
3. How are they going to compensate us for the Indignities and the financial losses?

5 6 7 8 91 2 3
4
Scene number 4/9

Bob calls the technical support of the IT company that built our mail
infrastructure, informs them about the incident that happened, and
present the list of questions.

The "other side", explains that this problem
is not related to "their side" in any way, and that the responsibility for
protecting the organization mail infrastructure from such attack, is the
responsibility of the organization that owns the mail infrastructure
meaning, our responsibility.

After an exchange of harsh words, Bob disconnects the
call and informs Billy that the provider, refuses to help
us and in addition, blames us for the "mess".

6 7 8 91 2 3 4
5
Scene number 5/9

Billy (the company IT manager) picks up the phone and calls the
technical support of the provider who built our mail infrastructure.
Billy asks politely but firmly to talk to Stephen,
the manager!

Stephen explains that this problem is not related to "their side" in any
way, and that responsibility for protecting the organization mail
infrastructure from such attack, is the
responsibility of the organization who owns and manages the mail
infrastructure.

After an exchange of harsh words, Billy disconnects the call.

7 8 91 2 3 4 5
6
Scene number 6/9

The bottom line – Stephen that represents the IT company that
built our mail infrastructure declares that – they are not willing
to take any kind of responsibility for this mess!
Billy calls you (just a quick reminder; you are Jeff the company
CIO) and reports on the conversation with Stephen.

You ordered Billy to immediately summon a
conference call, that includes yourself, Billy
(the company IT manager) and Stephen.

You start the phone conversation with some statement
about the fact that you have decades of experience in
the field (usually, the magic number is 15 years).

You continue to the "threats phase", and clarify unambiguously that if he (the
provider) will not take responsibility, provide immediate answers and solve the
mess, you will:
fire him
sue him and in addition
publish negative information about his company on Facebook.

Stephen says that he is very sorry, that he understands my pain, but
nothing he can do to help us in this scenario.

8 91 2 3 4 5
Scene number 7/9
6
7

You start to stutter and mumble about security risks, cyber-
attacks, the difficulty in dealing with the risks and threats of
the modern work environment.
You enter the office of the CEO with heavy steps

Brad (your CEO) informs you that you will have drawn the
required conclusions.

91 2 3 4 5 6 7
8
Scene number 8/9

Two years passed since you have been fired following the unfortunate incident.
You could not find another job (because of age and other reasons).
Your financial situation is not good, and you get a call from the bank on a daily basis.
After many reflections and obsessive thoughts, you decide that .

1 2 3 4 5 6 7 8
9
Scene number 9/9

The wind blows in your face.
You're standing on a high bridge looking into the abyss which
pours down!
Goodbye cruel world!

Dealing with a spoof mail attacks and phishing mail attacks a little story with a sad end - part 1#9 | Eyal Doron | o365info.com

Dealing with a spoof mail attacks and phishing mail attacks a little story with a sad end - part 1#9 | Eyal Doron | o365info.com

Recomendados

Recomendados

Mais conteúdo relacionado

Destaque

Destaque (15)

Mais de Eyal Doron

Mais de Eyal Doron (20)

Último

Último (20)

Dealing with a spoof mail attacks and phishing mail attacks a little story with a sad end - part 1#9 | Eyal Doron | o365info.com

Notas do Editor