Article Defines What is Whaling, Victims, Case Studies, Finally – 2019 Prevention Tips to Protect the Whales.
You must be aware that phishing attacks are increasing day by day and becoming sophisticated. Companies are also targeted with whaling attack.
What is Whaling?
Whaling is a kind of phishing attack. These attacks steal the personal and financial information of the employees and companies respectively. Moreover, online scammers fool company executives to reveal the company information. Thus, done by sending emails or directing them to a fake website.
Though, here employees with a high profile of an organization are targeted to loot the important data. The employees with high profile include CFO or CEO of the company. Since these employees are at higher positions in the company they have full access to data which is sensitive.
Whaling attack is not easy to detect compared to other phishing attacks. We can reduce the whaling attack to be successful by motivating the management staff at the corporate level to undergo security level training.
Yesss, You could not Retrieve your money or pain!
But You can Still, Alert your fellow citizens with your painful experience regarding a this Fraud.
Who knows, The next victim might be from one of your Family, Friend or a Client. Don’t let it Go Away!
Victims of Whaling Attack
- Executives with a high profile such as the CFO or CEO of the company.
Case study: Whaling Attack Faced by Snapchat
Snapchat payroll department received an email asking for payroll information of the employee. Here the email appeared to come from the CEO.
This email was not recognized that it was sent by a scammer. This led to the disclosing of information about the past and current employees. Snapchat reported to the FBI about this incident. The company will also train staff to avoid such incidents again.
Payroll and HR department receive plenty of emails. Most of these emails have attachments where they have to open it. Thus, the team from IT security should ensure that steps are taken to prevent such targeted attacks.
Yesss, We Defend Frauds could not Retrieve your money or pain!
But We can Still, Alert your fellow citizens with your painful experience regarding this Fraud.
Who knows, The next victim might be from one of your Family, Friend or a Client. Don’t let it Happen!
Prevention Tips: To Avoid Whaling Attacks?
- Email should be secured by using Two- Factor Authentication.
- Set up of the verification process. It includes phone verification or verification through face-to-face.
- Senior managers training is important so that suspicious emails can be deleted.
- The email security system should be used so that domain links are reviewed.
If you are the top executive of the company and experienced such an attack you can share it with us. If you have heard about any companies which have been affected by whaling attack you can comment to us below.