Internet users are exposed to many types of attacks. The different attacks with which our computers can be infected are the different types of malware, viruses, Trojans and computer worms. Another one that is on the rise as well, and whose objective is to steal the credentials of our accounts, are phishing attacks. In this regard, many of the attacks of this type that occur today are aimed at social networks. In this article we are going to see how attackers increase phishing attacks on social networks thanks to a study by PhishLabs.
Trend of threats such as Phishing
In the PhishLabs quarterly report, throughout 2021 it has detected and mitigated a large number of phishing, social media, email and dark web threats targeting a wide range of companies and brands. It should be noted that the Phishing remains the dominant attack vector for the cybercriminals. If we make a compared to 2020 we can observe that has increased by 31.5%.
According to John LaCour, founder and CTO of PhishLabs, in the early summer of 2021 we saw a drop in the volume of phishing. However, it also adds that this was punctual since these types of attacks increased again in the months of July and September. Many IT security teams will have been dealing with an onslaught of threats over the holidays. In this regard, it can be very important to know why phishing messages succeed and how to protect ourselves.
Another factor to keep in mind is that operators’ telecommunications data is also still being traded on Dark Web sites. Cybercriminals who gain access to account details after obtaining login credentials can gain access to payment method details and confidential information. Currently, as we will see below, phishing in social networks as a way in which bad actors profit is the order of the day
The rise of phishing on social networks
The cybercriminals when carrying out their attacks seek profitable goals that allow them to obtain benefits of some kind. In that regard, right now the social networkss are now his preferred attack target, moreover, the attacks per target are constantly increasing and this year takes a 82% increase. The payment services industry continues to be hit the hardest, too, but staffing and hiring saw the sharpest increase in attacks compared to the second quarter.
Another thing that is talked about in this report is that Vishing incidents have also doubled and even tripled in number, for the second consecutive quarter. In case you don’t know, it is a type of social engineering scam in which, through a phone call, the identity of a trusted company, organization or person is impersonated, in order to obtain personal and sensitive information. of the victim.
One thing is clear, phishing attacks on social networks are on the rise. John LaCour believes that given the continuous increase in threats on social networks, it is necessary for companies to prioritize their visibility on platforms such as Twitter, Facebook, Instagram and more. In addition, he adds that as seasonal hiring for the holidays increases, the staffing industry in particular must be prepared to deal with the online problems of phishing and other scams. Here you can consult the report on the PhishLabs website.
How to be more protected from these attacks
To be more protected from phishing in social networks we must think about activate multifactor authentication in our accounts. Thus, even in the hypothetical case that they obtained our password, they would be missing a second factor that could be, for example, putting a code that we obtain from Google Authenticator. Today the vast majority of major social networks have a two-step security verification. At RedesZone we recommend activating it for greater security.
Finally, you may be interested in knowing the most common Phishing strategies in social networks such as Facebook, Instagram, LinkedIn and Twitter.