CISA, NSA, FBI, MS-ISAC Publish Guide on Preventing Phishing Intrusions


WASHINGTON (AP) — To assist organizations in reducing the likelihood and impact of successful phishing attacks, the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) published “Phishing Guidance, Stopping the Attack Cycle at Phase One” today. It covers in-depth knowledge on malicious actor strategies, as well as technical mitigations and recommended practices for preventing successful phishing efforts.

Malicious actors regularly use phishing, a type of social engineering, to convince their intended victims to visit an illicit website or download malware. This guide categorizes phishing into two common strategies to assist organizations learn more about it: phishing to get login credentials and phishing to distribute malware.

Read More…