I recently had my organization targeted by a phishing attack that cleverly disguised a malicious link using a legitimate site, smartsuite.com. We noticed this pattern with other services like tabler.io as well. Fortunately, there are only a few external links that our team genuinely needs access to, mostly from local government agencies. We're considering blocking many legitimate third-party services to prevent users from inadvertently clicking through to malicious sites. So, here's my question for you, sysadmin friends: do you have or know of any lists of legitimate websites or services that have been frequently used to deliver phishing links? Even if you just have a few examples, I'd love to hear them!
6 Answers
It's tough to find lists that stay updated with all the current phishing threats. I'd recommend sticking with open threat intelligence lists since they consider legitimate services. Also, consider discussing internally whether to block these services if they're always a problem. Training employees on cybersecurity awareness is vital too.
We've encountered issues with almost every document transfer service. Our approach is to never open those messages unless we've confirmed with the sender via phone. It's a bit extreme, but it's kept us safe!
Google Sites is a common one as well. So many people mistakenly trust the sites hosted there thinking they are official Google pages.
I've noticed that platforms like DocuSign, Dropbox, SharePoint, and ShareFile are often exploited in phishing attempts.
Gmail seems to be a huge target for phishing attacks. I've seen it used extensively for that purpose.
Great insights so far! We have rigorous training in place and a strict policy on external links, but as always, there are still sneaky attempts! 😊
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures