Re: Phishing

Liste des GroupesRevenir à se design 
Sujet : Re: Phishing
De : blockedofcourse (at) *nospam* foo.invalid (Don Y)
Groupes : sci.electronics.design
Date : 06. Sep 2024, 19:51:31
Autres entêtes
Organisation : A noiseless patient Spider
Message-ID : <vbfivs$tlhp$3@dont-email.me>
References : 1 2
User-Agent : Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.2.2
On 9/5/2024 4:56 PM, Edward Rawde wrote:
"Don Y" <blockedofcourse@foo.invalid> wrote in message news:vbcvp4$eoqp$1@dont-email.me...
I'm checking my "deflected" incoming mail to see if anything that
*should* have been allowed through was mistakenly diverted
(false positive).
>
I see a fair number of phishing attempts on my "public" accounts.
But, all are trivially identified as such.
>
So, how is it that folks (organizations) are so often deceived
by these things?  Are users just lazy?  Would it be more helpful
to have mail clients make it HARDER to activate an embedded
URL or "potentially compromised" attachment?
>
Or, will the stupidity of users adapt, accordingly?
 More likely the ingenuity of scammers will adapt accordingly.
They have to coax/entice/trick you into DOING something.
By making it harder for you to "do things" acts as a
deterrent to these sorts of exploits.
E.g., if you had to cut/paste a URL into a browser (instead
of clicking on a link embedded in an email), you would be
less inclined to casually do so.  AND, would be forced to
see the ACTUAL URL instead of letting it hide behind
"click here".

I got a "Your amazon account has been charged" call today.
Caller ID gave a local number, just different last four digits.
Our phone is pretty well locked down.  Calls go to one of
two voice mails -- without ringing the phone; neither is
checked often (and one is NEVER checked).
OTOH, if you are a WELCOMED caller, the phone actually *rings*.
Two of our phones only accept calls from the OTHER of our
phones (the numbers have never been "given out" to anyone
so an incoming call that is not from one of our phones is
obviously not something we want to receive).  If you
deliberately fail to set up your voicemail, then these
calls just fall off into never-never-land.

I don't bother filtering email except at the server level where some countries can't connect inbound at all.
The phishing protection doesn't rely on filtering messages.
Rather, just not making URLs easy to access (or attachments
easy to open).
Folks who have any of my "non-public" email addresses are
treated like you would expect a trusted correspondent to be
treated.  But, traffic on the "public" (published) accounts
is highly censored.

Date Sujet#  Auteur
5 Sep 24 * Phishing18Don Y
6 Sep 24 +* Re: Phishing3john larkin
7 Sep 24 i`* Re: Phishing2legg
7 Sep 24 i `- Re: Phishing1john larkin
6 Sep 24 +* Re: Phishing4Don Y
7 Sep 24 i`* Re: Phishing3Edward Rawde
7 Sep 24 i `* Re: Phishing2Don Y
7 Sep 24 i  `- Re: Phishing1Edward Rawde
7 Sep 24 +* Re: Phishing7Joerg
8 Sep 24 i`* Re: Phishing6Don Y
9 Sep 24 i `* Re: Phishing5Joerg
9 Sep 24 i  +* Re: Phishing3Don Y
9 Sep 24 i  i`* Re: Phishing2Joerg
10 Sep 24 i  i `- Re: Phishing1Don Y
10 Sep 24 i  `- Re: Phishing1ehsjr
8 Sep 24 `* Re: Phishing3john larkin
9 Sep 24  `* Re: Phishing2Joerg
10 Sep 24   `- Re: Phishing1john larkin

Haut de la page

Les messages affichés proviennent d'usenet.

NewsPortal