Phishing attack
Phishing is a cybercrime in which a target or targets are contacted by email, telephone, or text message.
This is done by someone posing as a legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, banking and credit card details, and passwords.
The goal is to trick the email recipient into believing that the message is something they want or need — a request from their bank, for instance, or a note from someone in their company — and to click a link or download an attachment
What really distinguishes phishing is the form the message takes: the attackers masquerade as a trusted entity of some kind, often a real or plausibly real person, or a company the victim might do business with.
Phishing attack in India
India is one of the key countries affected by phishing attacks, where employees often click on malicious links or attachments that appear to be from legitimate sources, often leading to severe financial losses
However, there was a silver lining as far as India was concerned as reporting practices have improved, with 20% of users now identifying and reporting phishing during simulation tests.
This was only the first stepping stone, as enterprises can significantly reduce human error in cybersecurity by adopting a multi-pronged approach.
2024 Data Breach Investigations Report by Verizon Business says that espionage attacks dominate APAC’s cybersecurity landscape, including that of India.
On an average, it took organisations surveyed about 55 days to patch 50% of their critical vulnerabilities and the non-malicious human element was involved in more than two-thirds of these breaches
COMMENTS