Phishing refers to a variety of attacks that are intended to convince you to forfeit sensitive data to an imposter. These attacks can take a number of different forms; from spear-phishing (which targets a specific individual within an organization), to whaling (which goes one step further and targets senior executives or leaders). Furthermore, phishing attacks take place over multiple channels or even across channels; from the more traditional email-based attacks to those using voice – vishing – to those coming via text message – smishing. Regardless of the type or channel, the intent of the attack is the same – to exploit human nature to gain control of sensitive information (citation 1). These attacks typically make use of several techniques including impersonated websites, attacker-in-the-middle, and relay or replay to achieve their desired outcome.
More FIDO in the News
American Banker: Why banks should consider taking a page from Facebook on security keys
American Banker poses the question, “If Facebook brings physical security keys using FIDO authentication to…
ComputerWeekly: Facebook ups security with FIDO two-factor authentication
ComputerWeekly reports that Facebook is upgrading the login security for its 1.79 billion users by…
InfoWorld: Better authentication: Go get ’em, FIDO
In this feature on FIDO, InfoWorld shows how the FIDO Alliance is breaking the mold…
