Every Solution You Can Imagine – and More
What cybersecurity solution do you need? From Zero Trust to ADR, IAM, risk/privacy, data protection, AppSec and threat, securing digital transformation, to resiliency and remediation, we can build the right program to help solve your challenges.
A Single Partner for Everything You Need
Optiv works with more than 400 world-class security technology partners. By putting you at the center of our unmatched ecosystem of people, products, partners and programs, we accelerate business progress like no other company can.
We Are Optiv
Greatness is every team working toward a common goal. Winning in spite of cyber threats and overcoming challenges in spite of them. It’s building for a future that only you can create or simply coming home in time for dinner.
However you define greatness, Optiv is in your corner. We manage cyber risk so you can secure your full potential.
This is Not a Drill: Phishing as-a-Service
Up first in the Not-News: cybercrime is a problem that’s expected to cost $6 trillion annually by 2021. Which means hackers are always thinking up new ways of fooling people, right?
Well, yes. But also no. The most common hook cybercriminals use is one that’s been around for more than 30 years: phishing.
Some interesting stats:
And the primary tool for delivering phishing attacks is email.
According to Webroot, 1.5 million new phishing sites are created every month. That’s more than 46,000 per day.
If that seems like an outrageous number, it is. And part of the reason it’s possible is the advent of Phishing as-a-Service offerings, which help entry-level hackers get started.
In the past, phishing campaigns required threat actors to have some technical knowledge to utilize phishing kits, compromise sites to host the phishing landing pages that are used to steal credentials, and to create realistic spam campaigns.
To overcome this barrier of entry, new criminal sites are being developed that provide a Phishing as-a-Service that includes a phishing kit and hosting for phishing forms at a very low cost. This allows would-be criminals with little technical knowledge to easily get started with their own phishing campaigns.
These hosted, SaaS-model offerings are simple, cheap and surprisingly sophisticated. And, given the growth we’re seeing, we might expect clever cybercriminals to continue exploring even more in the way of innovative threat services.
Fortunately, there are tried-and-true ways of protecting yourself. From the user’s perspective PhaaS is the same as any other phishing method, and we recently developed a comprehensive list of 22 ways to protect yourself against phishing attacks. In particular:
And absolutely, positively:
Vigilance matters more now than ever. But if you follow these steps, as well as any others suggested by your IT group, you should be fine.
Our new infographic book, A Visual Landscape of Cybersecurity, is 100 pages of eye-opening stats and insights for CISOs to board members to SOC analysts and everyone else in the information security field. We’d love to send you a copy – just click here.
Let us know what you need, and we will have an Optiv professional contact you shortly.