SLIDE 1
The Little Phish Is The Best Catch Dan Goodman, Co-Founder @ Anchor - - PowerPoint PPT Presentation
The Little Phish Is The Best Catch Dan Goodman, Co-Founder @ Anchor - - PowerPoint PPT Presentation
The Little Phish Is The Best Catch Dan Goodman, Co-Founder @ Anchor Security Team Give a man a fish, he will eat for a day Teach a man to phish, and he will steal every day Phishing What is Phishing? The act of attempting to steal
SLIDE 2
SLIDE 3
The Little Phish Is The Best Catch
Dan Goodman, Co-Founder @ Anchor Security Team
SLIDE 4
“Give a man a fish, he will eat for a day… Teach a man to phish, and he will steal every day…”
SLIDE 5
Phishing
SLIDE 6
What is Phishing?
The act of attempting to steal information or gain access to systems through impersonation or deception over digital communication.
SLIDE 7
Unprepared and Unaware Make the Easiest Target
SLIDE 8
It’s my bosses problem… It’s AT&T’s problem… It’s Comcast’s Problem… It’s IT’s problem…
SLIDE 9
2018 Cyber Crime
Damages $6 Trillion Profit $1.5 Trillion
2018 Small Business Hacks
Phishing 80% Other 20%
Cyber Crime and You
SLIDE 10
Four Factors of a successful Phish:
Is it Urgent? Is it Important? Is it from an Authority? Is it Limited or Free?
SLIDE 11
Urgency
Individuals tend to respond quickly, without considering the validity of the requests origin.
Urgent matters require urgent responses.
SLIDE 12
Example
This may sometimes happen, But it’s rare for large companies This is not the right length, Not real UPS website
Urgency Established
SLIDE 13
Importance
Recipients might be too focused on the importance of the request.
Importance requires focus.
SLIDE 14
THE IRS WILL NEVER EMAIL YOU
Importance Established
SLIDE 15
Authority
A request coming from a higher authority requires the individual be dependable in their promptness
Authority demands prompt dependability.
SLIDE 16
(Fake CEO Email)
A Picture of your CEO Authority Established
Your name Urgency
SLIDE 17
Limited and Free
When something is free in limited quantity, individuals move fast
Limited and Free blinds the individual.
SLIDE 18
Established Limited and Free
Weird syntax It was in spam for a reason, not even Amazon
SLIDE 19
If They Distract You with the Request They Win.
SLIDE 20
Email isn’t the only Phishing platform
Phones can be even worse
SLIDE 21
Martin Cooper holding the world’s first mobile phone, 1973
SLIDE 22
Apple’s Steve Jobs introduces the iPhone at MacWorld, 2007
SLIDE 23
Nobody had security in mind at the time… And the cellular system kept growing without it.
SLIDE 24
How is the current cellular system a threat? Allow me to show you…
SLIDE 25
Demo Phish:
Spoofing a Phone Number
SLIDE 26
Here’s the crazy part:
You don’t need to be the one who gets fooled.
SLIDE 27
Phishing is the most Dangerous and Widespread Attack
You may never figure out that you just gave away your data
SLIDE 28
2019’s 12 Most Exploited Countries
0% 25% 50% 75% 100%
Spain Saudia Arabia Colombia Turkey Japan China South Africa Italy Canada Mexico France USA
75.9% 76.1% 78.1% 79.5% 79.6% 80.9% 83.7% 85.7% 87.8% 87.9% 91.5% 93.7%
Imperva 2019 Cyberthreat Defense ReportThese are Small Businesses
SLIDE 29
Let’s Fix the Problem Together
SLIDE 30
The best things you can do to prepare:
1) Training 2) More Training 3) And Then Some More Training
SLIDE 31
Checking for Phishing should be second nature
SLIDE 32
More Steps to Take Now
Easy: Always be the one to call someone you don’t know, Always inspect emails carefully Medium: Use more modern and secure methods of communication e.g., Slack, Signal, Discord, iMessage Hard: Use digital signatures for email
SLIDE 33
Don’t forget, you can be phished in person too
SLIDE 34
Questions?
SLIDE 35
Don’t be another statistic…
SLIDE 36
anchorsecteam @anchorsecteam
Free Security Audit:
Email “webinar1”, your name, company, and phone number to hello@anchorsecurityteam.com
anchorsecteam
Until 8/8/19