Twilio has suffered a data breach as a result of phishing. Attackers don’t need to be sophisticated and smart when users are willing to click on links from unsolicited emails and SMS messages. They continue to leverage phishing attacks because clearly they still work. While scammers prey on the trusting element of human nature, organizations should also think about how their technology investments support their education and awareness efforts.
It’s time to think beyond the prevention box when it comes to phishing. Organizations spend about 75% of their security budgets on prevention tools. Yet we all know that it is only a matter of time before a breach occurs.
We know that motivated, sophisticated cybercriminals can gain access to nearly any organization. Smart defenders should have a defensive playbook around the midgame, where the attacker pivots through an organization’s infrastructure, taking actions that can alert the team to the intrusion — command and control communications, data staging and lateral movement — before they’re able to access, exfiltrate or encrypt critical data.