Why practicing phishing is so much easier than you think

While it is clearly not new, phishing is one of the biggest challenges we face in terms of cybersecurity. As a reminder, phishing is a technique used by malicious actors who try to make people believe that they are communicating with a trusted third party to extract their personal data.

Thus, according to a study conducted last June by PhishLabs, the number of sites using phishing increased by 47 % during the first semester 2021, and nothing seems to indicate a lull.

Multi-factor authentication is increasingly undermined

On the contrary, practicing phishing would have become much easier than a few years ago. Researchers at Stony Brook University in New York State thus discovered 1200 sites that contain toolkits to help malicious actors practice this type of hacking.

Among them, some solutions are even free, which can increase the temptation. Another rather worrying lesson: some offers make it possible to circumvent multi-factor authentication, a practice intended to avoid hacking by confirming the identity of the user.

Finally, the experts were able to observe that the he overwhelming majority of these sites come from the United States and Western Europe. A finding that may surprise when countries like Russia are regularly singled out.

Of course, there is no miracle solution to deal with phishing. Caution is therefore still required and should allow you to find counterfeits. You should also never click on links in e-mails or text messages that seem questionable. By monitoring certain messages, it also often happens that they contain gross spelling errors or elements that can alert.

The use of an anti-phishing is also a plus. They are present on most antiviruses on the market. To see more clearly, you can precisely consult our guide.

Anti-virus Bitdefender Plus

By: Bitdefender