Hyland 160x1200

Hyland 160x1200

Hyland 705x108

Sunday, 26 June 2022 22:43

‘False assumptions’ about social engineeering debunked: Proofpoint

By Proofpoint
Sherrod DeGrippo, Vice President, Threat Research and Detection at Proofpoint Sherrod DeGrippo, Vice President, Threat Research and Detection at Proofpoint

A new research report has debunked five “false assumptions” that people have about social engineering which are integral to why so many fall victim to these forms of cyberattack.

Cybersecurity researchers at security firm Proofpoint have today released their 2022 Social Engineering report, which analyses key trends and techniques of socially engineered cyber threats observed over the past year.

The report debunks 5 false assumptions people have about social engineering which are integral to why so many fall victim to these forms of cyberattack, these include:

  • The assumption that legitimate services such as those provided by authoritative technology companies like Google and Microsoft are safe to use
  • The assumption that threat actors are unaware of email conversations held with colleagues and that those existing conversation threads are safe
  • The assumption that threat actors will not spend time building rapport prior to executing attacks, such as by holding regular conversations
  • The assumption that threat actors won’t make use of timely, topical, socially relevant content to pique interest or exploit emotions
  • The assumption that threats only involve their computer and other technologies such as the telephone

The report references several examples of sophisticated social engineering attacks, including:

A Russian-aligned threat actor masquerading as the wife of Russian opposition leader Alexei Navalny as part of attacks aligned with the Russian state’s objectives

North-Korean aligned threat actor phishing for login details through social engineering campaigns related to nuclear weapon safety and President Joe Biden.

“Despite defenders’ best efforts, cybercriminals continue to defraud, extort, and ransom companies for billions of dollars annually. The struggle with threat actors evolves constantly, as they change tactics to earn clicks from end users,” said Proofpoint vice president of threat research and detection Sherrod DeGrippo.

“Security-focused decision makers have prioritised bolstering defenses around physical and cloud-based infrastructure which has led to human beings becoming the most relied upon entry point for compromise. As a result, a wide array of content and techniques continue to be developed to exploit human behaviours and interests.”

The Proofpoint full report is online here.

Read 4180 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here


Thoughtworks presents XConf Australia, back in-person in three cities, bringing together people who care deeply about software and its impact on the world.

In its fifth year, XConf is our annual technology event created by technologists for technologists.

Participate in a robust agenda of talks as local thought leaders and Thoughtworks technologists share first-hand experiences and exchange new ways to empower teams, deliver quality software and drive innovation for responsible tech.

Explore how at Thoughtworks, we are making tech better, together.

Tickets are now available and all proceeds will be donated to Indigitek, a not-for-profit organisation that aims to create technology employment pathways for First Nations Peoples.

Click the button below to register and get your ticket for the Melbourne, Sydney or Brisbane event



It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site itwire.com and prominent Newsletter promotion https://itwire.com/itwire-update.html and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV https://www.youtube.com/c/iTWireTV/videos which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.


Share News tips for the iTWire Journalists? Your tip will be anonymous




Guest Opinion

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News