The editorial office of Ciso Club communicated with Sergey Valokhin and found out how the phishing market has changed in 2021.
Sergey Voldohin - co-founder and director of the company Antifishing. More than 16 years of experience in IT, of which 9 years in security. Introduced the information security system and was responsible for their compliance with PCI DSS standards, ISO 27001, SOC2. Answered for information security in the international company. Lead Auditor ISO / IEC 27001.
The editorial office of Ciso Club learned from Sergey who more often becomes victims of fraudsters and how to defend themselves from them. We learned from Sergey the most common phishing methods, how to properly conduct cybers, and what is the difference between the functionality of the Antifishing platform, from traditional courses conducted by training centers.
Note: Phishing is a type of Internet fraud, the purpose of which is to gain access to confidential users of users - login and passwords. This is achieved among other things by conducting mass mailings of electronic letters on behalf of popular brands, as well as personal messages within various services, for example, on behalf of banks or within social networks. The letter often contains a direct link to the site, externally indistinguishable from the present, or on the website with redirect. After the user falls on a fake page, fraudsters are trying to enter their login and password on the fake page to enter their username and password, which it uses to access a specific site, which allows fraudsters to access accounts and bank accounts.
1) Sergey, how did the phishing market change in 2021? What high-profile events occurred?
2) What is the difference between your platform from training conducted by training centers?
3) How to understand that the received message or email came from attackers to an ordinary user?
4) What harm to the user can be applied when following links from phishing letters?
5) How to estimate the cost of damage from phishing in rubles?
6) What is better to use to protect against phishing, cloudy or on-premise solution? Is the phishing protection effectively with NGFW or do you need a specialized solution?
7) Antivirus on the user's PC always determines the phishing site?
8) Who is most often becoming victims of phishing, employees of companies or home users? IT employees can become victims of phishing?
9) How to spend cybirings to counteract phishing among users?
10) The average phishing company lasts 21 hours, do you agree with this statement?
11) Call the most common phishing methods.
12) Do you lead an antifishing digest, what are the 3 loudest events related to phishing occurred in 2020?
13) Announcement of the nearest events.
More interesting material on cisoclub.ru. Subscribe to us: Facebook | Vk | Twitter | Instagram | Telegram | Zen | Messenger | Icq new | YouTube | Pulse.