Hackers Phish for Political Secrets in Midterm Campaigns

Posted by Mitnick Security on Sep 4, 2018 5:00:00 PM

The best hacks are always the simplest.

When Russian hackers successfully attacked Hillary Clinton’s presidential campaign chairman John Podesta in 2016, they didn’t need to use crippling ransomware or a complex zero-day exploit. Instead, the Russians used one of the oldest tricks in the hacker playbook: Email phishing.

“Phishing is all about the bad guy — the attacker — sending a malicious email to a victim and fooling that person either to click on a link within the email or open up an attachment,” said hacker and computer security consultant Kevin Mitnick in an interview with CBS News. “When the victim [clicks the link or opens the attachment] their computer ends up being compromised and malware is installed so the bad guy has full control.”

To view the full article and to get updates on other current news items please visit the source.

Source: WCBI

Topics: election hacking, email phishing, fake domains, WikiLeaks, Claire McCaskill, computer security expert, Hillary Clinton, information theft, intelligence, IP blocking, Julian Assange, keynote speaker, malicious email, Putin, John Podesta, malware, Zzure Cloud platform, Kevin Mitnick

Latest Posts

Kevin offers three excellent presentations, two are based on his best-selling books. His presentations are akin to technology magic shows that educate and inform while keeping people on the edge of their seats. He offers expert commentary on issues related to information security and increases “security awareness.”

What's Included in a Penetration Test Report?

Penetration tests are an extremely useful exercise to mitigate risks and patch your security gaps. If you’ve been asking yourself why do penetration t..

What Is Pivoting in Cyber Security and What Does It Mean for Pentesters?

Data breaches in 2022 were abundant and sophisticated. Realistically, it’s expected that this year we will continue to see threat actors test their li..

What Is One-time Password (OTP) Social Engineering?

Even if your business has a mature cybersecurity program, there may be one vulnerability that threat actors can still use to steal your company data: ..

Working with Kevin

Hire Kevin to Speak

Virtual Events & Webinars

Speaking Topics

Bureau Information

About Kevin

Speakers Bureaus

Media Kit

Penetration Testing

Incident Response

Computer Forensics

Expert Witness Services

Security Awareness Training

Vulnerability Assessment

Product Claims Testing

Red Team Operations

Social Engineering Testing

Books from Kevin Mitnick

Ghost in the Wires

The Art of Invisibility

The Art of Intrusion

The Art of Deception

In The News: More from Kevin Mitnick

Advice from Kevin Mitnick Featured in the Wall Street Journal Op-Ed

12 Ways to Defeat Two-Factor Authentication

We Need to Talk About NIST’s Dropped Password Management Recommendations

KnowBe4 Positioned as Leader in the Gartner Magic Quadrant for Second Consecutive Year

About Our Team

About Kevin

Global Ghost Team

In The News

Our Work

Our Clients

Testimonials & Reviews

Media Kit

Raising Your Security Posture with The Global Ghost Team

Resources

FAQs

Blog

Lockpick Business Card

Recent Articles