Cyberattack Evolution
Social engineering cyberattacks target people. The objective of these cyberattacks is to trick people into compromising their systems. In a recent webinar (registration required), Proofpoint demonstrated how the Dridex attackers modified their malicious attachment to improve its performance. For this attack to work, the user must activate scripts. The user interaction process evades malware detection over 99% of the time -- but it depends upon the user taking the required steps. How can the attacker convince the victim to enable scripts in the face of the system generated warning? The first generation attack in October 2014 presented only the system generated warning. [...]