amigan_99
asked on
Phishing for dollars
Our accounting team recently received an email ostensibly from one of our suppliers requesting payment. Fortunately it was noticed and not paid. But what would be the most likely route for a spammer to know one of our vendors? We're reviewing procedures but wanted to get feedback from EE too. Thanks.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Hope the article also help in assessment of your use case - supposedly they are opportunistic and either through word of mouth (via main/sub contractor or customers), social network like LinkedIn or online advertisement), those spammer can harvest easily email and pull off any one whom replied and fall into their trap and scam. Even CEO is not spared with recent CEO Fraud scam (sender spoofed as CEO email and send to colleague to wire transfer...)
https://www.experts-exchange.com/articles/17548/Stop-Think-Decide-THEN-Click.html
https://www.experts-exchange.com/articles/17548/Stop-Think-Decide-THEN-Click.html
ASKER
Thank you!
ASKER
https://www.sophos.com/en-us/support/knowledgebase/37179.aspx
http://www.webroot.com/us/en/home/resources/tips/online-shopping-banking/secure-what-is-social-engineering