Cybersecurity Blog

Read the Phishing Email that did Podesta in – 10/28/16

 

Poor John Podesta, he checked with his security team and they let him down.  Check out the email thread from Wikileaks and see how his team was fooled.  This one is very sophisticated. The sender address looks completely legit. The only way you know it is a phishing email, is the CHANGE PASSWORD link (the link appears as a URL), does not take you to google.  His staffers did tell him to go to the site directly to change his password, but being the busy guy he is he used the link.

How do you avoid being compromised like John?

  1. Do not click on links in unsolicited emails.
  2. If you feel the email is legitimate, go to the site directly using a URL that you know is legitimate. Do not use the URL in the email. Do not use a link in the email.