Information Security Newsletter
The New Information Security Newsletter
Inside this newsletter:
- Updates on what Information Security is doing throughout Avant
- Tips on how to stay safe at Avant and at home this holiday season
- Information Security industry news
- How to contact Information Security
What is Information Security Up To?
- Manager, Software Security Engineering - responsible for ensuring the integrity of all software and third-party service providers throughout Avant.
- Manager, Incident Response and Security Operations - responsible for security monitoring, analysis, and response to threats targeting Avant.
Why the Death Star Needed Information Security
December Security Tips
Stay Safe During the Holidays
Phishing is effective, low-cost, bypasses most detection methods, and offers criminals little chance of capture or retribution. It’s little wonder then that several prominent security firms have confirmed it to be the top attack method threatening the enterprise today, with security firm TrendMicro noting that spear phishing accounts for 91% of targeted attacks, incident response consultant Mandiant citing spear phishing as Chinese hacking group APT1’s most common attack method, and Verizon tracing 95% of state-affiliated espionage attacks to phishing.
Use these tips to spot common holiday phishing attacks this season:
- Bookmark shopping sites. Avoid using search engines to find good deals. Limiting your search to trusted shopping sites can reduce the chances of you landing on a spoofed site.
- Always check the hyperlinks. To verify the legitimacy of the URL, move your cursor over the embedded link before even clicking it. False links can be deceiving as scammers can use URLs with the relevant terms.
- Spoofed emails usually contain a generic greeting. The user’s email address can also be used rather than directly addressing the recipient with his/her name, and that's a red flag.
- Watch out for poor grammar or dodgy spellings. Legitimate emails do not contain glaring errors.
- Recognize sloppily-designed emails. Wrong or out of place logos and layouts are signs that a message isn’t from a trusted source.
- Beware of websites that ask for your password. Never give away passwords or sensitive information to untrusted or third party sites.
- Stay clear of emails or sites that demand urgent action. Some messages will include desperate calls to action such as clicking certain links or disclosing personal information.
- Be wary of too-good-to-be-true offers. There's a saying that goes, “if something seems too good to be true, it probably is,” and it applies to online shopping. Be wary of items offered at very low prices.
- Routinely check your card statements. Be on the lookout for unauthorized transactions.
Information Security News
- New EU Law makes companies report their breaches
- New York Prepares Cyber Security Guidance for Banks
- Insiders are a bigger threat than the perimeter
- Why Apple's CEO thinks we can have both encryption and national security
- Juniper faces questions about spying software planted in code
- Deadline for better encryption on payment systems pushed back two years
Avant takes security seriously. If you see something suspicious, get in touch with us: