Even though this type of tactic is known to many computer users, it’s hard to combat. As one person tweeted from network security company RSA’s annual conference in San Francisco, “Every organization has at least one employee who will click on anything.” The technique takes advantage of human curiosity, as well as people’s carelessness. As we analyzed hackers’ activities, we found that the first thing they often did when they successfully penetrated an email account was search for the keyword password. As people accumulated more passwords for more services, they often sent emails to themselves
...more
