A GoDaddy office location in Sunnyvale, California (GoDaddy Inc.).
Companies can protect employees from phishing schemes through a combination of training, secure email gateways and filtering technologies. But what protects workers from phone-based voice phishing (vishing) scams, like the kind that recently targeted GoDaddy and a group of cryptocurrency platforms that use the Internet domain registrar service?
Experts indicate that there are few easy answers, but organizations intent on putting a stop to such activity may have to push for more secure forms of verification, escalation procedures for sensitive requests, and better security awareness of account support staffers and other lower-level employees.
According to a report by security expert Brian Krebs, scammers called up GoDaddy posing as representatives of legitimate cryptocurrency platforms, and tricked employees of the internet domain registrar into changing account information so that email and web traffic intended for these platforms would instead be directed to attacker-controlled domains.
Experts warn that live social engineering calls are especially difficult to suss out, especially because there isn’t time to notice suspicious behavior in the middle of a conversation, and per ..
Support the originator by clicking the read the rest link below.
