Premium Content

Access "Messaging security risks have upper hand on solutions"

Published: 20 Oct 2012

We posed this question to security experts: If leading email filtering products detect and block 95 percent to 99 percent of unwanted email messages, with few if any false positives, why can't we declare victory? The answer is simple: spam still pays. So do phishing scams and links in email messages to compromised websites. "The return on investment is still very high for a very low click-through rate," says Paul Ferguson, threat researcher for Trend Micro. "If [attackers] get one person to go to a discount pharmacy site, they've made their money back in spades." Messaging platforms remain a viable attack vector for hackers who primarily rely on botnets of hijacked PCs to flood the Internet with bogus messages. The messages ply on users with the same kinds of social engineering tactics attackers used in 2004, pushing suspect drugs and knock-off watches. However, rather than using executable email attachments, attackers are luring users to phishing sites or bogus sites, infecting users with malicious drive-by downloads. The implications for business are ... Access >>>

Access TechTarget
Premium Content for Free.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

What's Inside

Features

More Premium Content Accessible For Free

  • Strategies for a successful data protection program
    data_protection_2014.png
    E-Handbook

    Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...

  • Devices, data and how enterprise mobile management reconciles the two
    ISM_supp_1014.png
    E-Zine

    The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...

  • Putting security on auto-pilot: What works, what doesn't
    security_auto-pilot.png
    E-Handbook

    For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...