Phishing remains the main attack method for data breaches. Scammers can fill user inboxes with sophisticated fake emails for little cost and all it takes is one unsuspecting user to download malicious code into a network and let the hacker in.
For years, one the most common methods to combat phishing attacks was to use an antivirus program that would check file attachments for malicious code. While this was effective for a while, hackers quickly began using workarounds to get their phishing emails past those network security filters.
The most popular method they’re using now is a link in an email message instead of a file attachment. The URL is able to get past malware filters because the message doesn’t contain any malware, instead it links the user to a malicious site. The site will typically do one of two things:
Between January and December of 2019, the use of Phishing URLs jumped by 640%.
To combat the dramatic rise in the use of malicious links in phishing emails, companies need to employ a combination of protections that include DNS filtering and security awareness training.
Using a link instead of a file attachment often fools users into a false sense of security. While they may be very suspicious of an unknown sender including a file attachment in their email, users may be less suspicious of links.
Since phishing emails with URLs are much more likely to get past antivirus protections than those with file attachments, there’s a much bigger chance for a user to accidentally get fooled by one.
25% of malicious phishing emails make it past standard Office 365 security protocols, putting more burden on user education and DNS filtering to stop network breaches.
Here are the two main ways to address phishing campaigns that contain URLs instead of malware and keep your network and data secure.
DNS (Domain Name System) filtering is a type of application that blocks malicious sites and helps prevent the downloading of malicious scripts when a user clicks a link to a dangerous site.
The DNS filter is a layer between the user and the internet. When a user attempts to visit a website, the DNS filter checks the URL against a continually updated list of known malicious sites, and if a site is found on that list, the user is blocked from visiting it and redirected to an alert page.
This helps combat phishing URLs after the fact, once a user has clicked the link in a malicious email or social media or messaging application.
DNS filtering is also useful for blocking unproductive sites or illegal or questionable sites, so that no one connected to your office network can visit them. It can also help resolve bandwidth issues and keeps someone from using an excessive amount of bandwidth when visiting a specific site.
Main advantages of DNS filtering:
Training your employees on the many tactics that phishing scammers use is important for keeping them aware of the threats coming into their inboxes. Threats are changing all the time as spammers come up with different types of tricks to get users to click on dangerous links.
Some of the tips that you want to regularly train your employees on include:
If you’re unsure about your protections against malicious sites, Haxxess can help ensure that your Northern Ontario company is protected from phishing emails that employ malicious URLs and give you the ability to blacklist specific websites.
Contact us today to schedule a free security consultation! Call 705-222-8324 or reach out online.