Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Phishing Links

From: Martin Manjak <mm376 () ALBANY EDU>
Date: Wed, 7 Jul 2010 17:09:55 -0400
Our recent experience is that those individuals who are most susceptible
to theses types of social engineering attacks are those who recently
left the University, i.e., grad students who were employed, graduating
seniors, temporary appointments either on the academic or professional side.

They look at phishing messages from a completely different point of view
than the general population. They may have a rather tenuous relationship
to the institution to begin with. To them, the loss of their University
account could happen, and for whatever reason, they are vulnerable to
those messages that threaten its loss. To avoid that, they respond to
the phish. Ironically, this results in the very thing they want to prevent.
Marty


On 7/7/2010 4:34 PM, Pete Hickey wrote:

The problem with this is why phishing is successful.

MOST people are not fooled.  The people who would go to such a web
site for verification are those who would not be fooled.  It is
the outer edges of the bell curve that are getting caught,and these
people would most likely not visit such a page for verification.




-- 
Martin Manjak
Information Security Officer
University at Albany
CISSP, GSEC, GCWN
Previous By Date Next
Previous By Thread Next

Current thread: