The criminals sent the employee a link that took the victim to a very realistic looking landing page.
The target then entered their password, giving it to the attackers.
At the same time, CI Security analysts saw that the employee had entered a password on a non-encrypted site.
CI Security immediately called the public agency and alerted them. The agency had the employee change their password, which stopped hackers from gaining further access to the systems.
“Thank you for calling yesterday so quickly. It really did save us,” the security at the agency told CI Security.
“Phishing attempts are getting more sophisticated and we are seeing employees fooled by them more frequently. We’re glad to be watching 24/7 so we can help companies and employees who get tricked, keeping an annoyance from becoming a disaster.”
CTO at Critical Insight