Phishing Via Dropbox, Here's How To Stay Safe
JAKARTA - Cybersecurity researcher Kaspersky discovered a new phishing scheme targeting the company's financial team or organization using dropbox services.
Kaspersky explained that initially the attacker would send an email from the official audit email address which was most likely hijacked. After that, the attacker sent a notification to the victim's dropbox account containing a phishing link.
SEE ALSO:
These attacks are considered targeted and monitored by Kaspersky in certain cases. To remain protected, it is advisable to continue to warn and encourage employee vigilance. Here are some simple tips:
Give basic training staff cybersecurity hygiene. Simulate phishing attacks to ensure that they know how to distinguish phishing emails. Overall, all company employees must remember to enter a password only on their organization's website. Neither Dropbox nor external auditors need to know and need your password.
"As attackers constantly design more sophisticated schemes to steal company account data, we recommend implementing real-time protection, threat visibility, investigation and response solutions."