Phishers Used Facebook to Penetrate Financial Firm’s Computer System
We have talked about Social Media in prior posts. The following is one of the reasons why.
Phishers used Facebook to burrow their way into the network of a large US financial company last year. The attackers took control of one employee’s Facebook account and using information culled from that individual’s friends’ profiles, sent what appeared to be personal messages to several other company employees about pictures taken at a company picnic. The phishers learned of the picnic through postings on the hijacked account. When one of the other employees received a message asking her to click on a link that would allow her to view the pictures, her computer became infected with keystroke logging malware.
When that employee logged in to a VPN account to access the company network, the attackers were able to capture the necessary information to gain access to that network. The intruders managed to get deeper into the network and take control of two servers before they were detected.
Read the full article posted by USA Today: How cybercriminals invade social networks, companies
For your reference, you can review our prior post: Social Media Policy Controls
Leave a comment
The attack hinges on a common mistake made by large organizations… An article review. Read more
The firm edited workpapers ahead of examinations, and had employees cheat on certific Read more
Another awareness poster for YOUR customers (and users). Now that we have our own em Read more
For the first time, a data breach has triggered a financial downgrade… An article rev Read more