The Phishing Renaissance

04/08/2018 11:22:12
The Phishing Renaissance:
Clever Phishing Techniques that Catch People Off Guard

Many people tend to laugh off phishing emails as a nuisance – but according to studies phishing has experienced a recent renaissance and their tactics are much more clever than just throwing a hook and hoping for a bite.

Familiar Attachments Scam
Hackers have recently been taking an actual subject line or attachment from a previously compromised device and using it to snag the attention of victims. The victim has seen the information before after all – all seems above board! A recent Hacker News post tells the sad story of a hacker who duplicated an athletic team practice schedule and accompanying subject line and sent the email to the entire athletic department. The school was forced to take down their email system for several hours while they repaired the damage and patched the leaks.

Financial Info Update Scam
Nothing gets the attention of people like a financial issue – and hackers are taking advantage!  A victim will receive an email from “XXX Company” telling them of an issue with their credit card or auto-pay service. Clicking on the link will take you to a page which is very similar to that of the actual service provider – and here you are asked to (and sometimes do) update your billing information or sometimes even personal information.

Fake URL Scam
On the more sophisticated side of phishing comes the URL switch-up. Hackers are developing fake URLs that look exactly like the real thing using Punycode, an online resource which allows you to register a URL in foreign language characters. By sending a look-alike email and embedded link to the fake site, hackers are getting login, financial and personal information from victims with a decent looking URL and a little photoshop action. Remember, fake invoices account for 26% of phishing scams – that’s nothing to sneeze at.

You may think this could never happen to you!  You are far too smart and capable to fall for something this simple. Well, consider a few recent statistics – because even if you aren’t falling for it, someone in your organization certainly is with 3 out of 4 companies falling victim to phishing scams.

Personalized email subject line increases the click rate by 29.6%.
The average open rate for retail emails is 20.96% and 36% of all spam is some form of advertising.
Political emails have a 22.23% open rate.
Professional service emails have a 20.89% open rate.
Spam accounts for 45% of all emails sent.
About 14.5 billion spam emails are sent every single day with spammers receiving 1 reply for every 12,500,000 emails sent.

What do you do about it?
You can’t always control what links your employees and co-workers click, but there are ways to protect yourself, your employees and your business. Sangfor Technologies Inc. offers a myriad of network security solutions including Internet Access Management (IAM), Next Generation Firewall Platform (NGAF), and their newest malware detection and prevention innovations like Neural-X, Engine Zero, ZSand and Botnet Detection. Employing AI and deep learning Sangfor wants to keep your work environment safe and secure from all threats, known and unknown.

About Sangfor
Founded in 2000 and a publicly traded company as of 2018 (SANGFOR STOCK CODE: 300454 (CH)) Sangfor Technologies is the global leading vendor of IT infrastructure solutions specializing in Cloud Computing and Network Security. For more information about Sangfor Business Intelligence and how to increase develop your business intelligently and intuitively, please visit our website

Our Social Networks

Global Service Center: