A new recently unsealed lawsuit against a North Korean hacker group shows how even the largest companies can be successfully attacked by phishing.
You’d think the world’s largest tech giant that both makes and uses their own cutting-edge security software would be the last company to be a victim of a data breach. But according to a new lawsuit, Microsoft is suing a hacker group known as Thallium or stealing valuable data.
According to the lawsuit, members of Thallium used spear phishing and impersonating legitimate Microsoft websites to compromise credentials, giving them access to “high-value” networks. Malware such as the BabyShark and KimJognRAT are alleged to have been used to provide remote access to systems and to exfiltrate data.
This lawsuit should be a warning to every organization; the company that make the software that stops the bad guys didn’t stop the bad guys! Based on the documented methods used (phishing) and results of the attacks (malware-infected endpoints), it’s evident that just as with every other organization in the world, you can’t 100% rely on security solutions. Eventually some measure of phishing emails make their way to the Inbox and are clicked on by users.
It’s imperative that the user become a part of the security strategy. By educating them with Security Awareness Training, users take on the same scrutinizing vigilance that already comes naturally to members of IT. Instead of falling victim, users become adept at spotting suspicious and potentially malicious email messages, stopping attacks in their tracks.