One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 1990787 |
| Date de publication | 2020-10-22 11:00:00 (vue: 2020-10-22 12:13:13) |
| Titre | SPAM text messages vs SMiShing and defending against it |
| Texte | The rise of SPAM text messages Businesses want to connect to their users and meet them where they are. One growing way to communicate to them is through text messages including providing coupons, recent news, and other marketing materials. When these marketing efforts are unwanted by the customer, this is when they cross the line into the SPAM category. SPAM has taken many forms throughout history such as junk mail in your mailbox and robocalls. Then, with the birth of the internet, digital SPAM emerged in the form of email and has now expanded to the web, social media, text messages, and more. These digital spam efforts are very easy and low-cost methods to reach large amounts of people. Legitimate businesses honor and respect this line between wanted and unwanted communications through opt-in/opt-out and subscribe/unsubscribe capabilities to allow users to manage how and when they want communications. But beyond managing the sheer number of text communications, what happens when a malicious actor decides to use these texting techniques to target you with a phishing expedition? What is SMiShing? SMiShing is phishing that uses texting to lead you to fake websites and phone numbers that imitate real companies. This is a type of social engineering that fraudsters use to get personal information from you with malicious intent. Today, phishing is the number one security threat and the worst part is- when it comes to phishing attempts on a mobile device, it works! For example, according to Lookout, 56% of mobile users have received and tapped on a URL that bypassed existing layers of phishing defense. And on average, a user will click on approximately six phishing links from their mobile device each year. You may be asking yourself, how could someone be fooled by these? Part of the reason is the form factor of a mobile device which makes it harder for the user to spot these social engineering techniques. Another reason is we’re often in a hurry or distracted while using the mobile device. And finally, many people believe they are safer on their mobile device than traditional laptops and desktops which in today’s world may not be the case. Mobile device manufacturers, wireless carriers, and regulators have all been working closely together to curb the issues around SPAM and SMiShing. For example, AT&T monitors the network 24/7 and supports legislation to end text spam. Also, AT&T will never ask someone to send personal or account information via email or text message. But with many types of security efforts, combating social engineering attempts like SMiShing is a shared responsibility, and both the individual and business owners need to take measures to help protect themselves and their data. Defend yourself against SPAM and SMiShing AT&T is vigilant about protecting customers from unsolicited text message spam but there is no simple fix to block these. As individuals, we can all take certain steps to help protect ourselves such as: If you are an AT&T customer, report them: Alert AT&T by forwarding the suspicious text to 7726 (SPAM) on your device. Messages forwarded to 7726 are free. They don't count toward your AT&T text plan. If you're not able to view the number, forward the entire message to abuse@att.net. On AT&T’s website: |
| Envoyé | Oui |
| Condensat | help learn protect text 24/7 7726 able about abuse@att access accessing accidentally according account actively actor actors against alert alerts all alllow allow also amounts another anti any app application approximately apps are arguably around as: ask asking at&t at&t’s att attacks attempts automated average based been believe best between beyond birth block both business businesses but byod bypassed call can capabilities careful carriers case category centrally certain chat click clock closely com/support/category/report combating come comes commission or communicate communications companies company company's compromised concerning confidential connect consider consulting contact cost could count coupons cross curb customer customers customizing data decides defend defending defense demand desktops device devices digital distracted distribute don't each easy educate efforts eligible email emerged employees end endpoint engineering enterprise entire etc even exactly example example: existing expanded expedition factor fake far federal file files finally find fix fooled form forms forward forwarded forwarding fraudsters free from ftc get gov to grade group growing guard happens harder has have help helpful history honor how https://www hurry identitytheft imitate in/opt including individual individuals information installation integrate intent internet isn’t issues junk just key laptops large lastly layers lead learn legislation legitimate less like line links look lookout looks low mail mailbox makes malicious malware manage managed management managing manufacturers many marketing materials may mdm measures media meet message messages methods mobile monitor monitors more mtd need needs net network never news not now number numbers occurs offers often one online opt org or other ourselves out owners part people personal phishing phone plan policy possible privacy products protect protected protecting providing reach real reason receive received recent recommend regardless regulators remediation report reportphishing@apwg respect responsibility review rise robocalls safer scans security select send services sets settings shared sheer sign simple since six smishing social software solution solutions someone sort source: spam spot spyware stay steps stored subscribe/unsubscribe such support supports sure susceptible suspicious take taken tapped target teams tech techniques text text/ texting than them them: themselves then these threat through throughout tips to 7726 are today today’s together tools tools: toward trade traditional treatment trojans type types uem understand unified unsolicited unsubscribe unwanted url use user users uses using valuable vectors very view vigilant want wanted way ways we’re web website: websites well what when where which will wireless working works world worms worst year you're your yourself yourself: |
| Tags | Spam Threat Guideline |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.