"Phishers Leverage Bait Attacks to Harvest Personal Data"

According to a new report from Barracuda, bait attacks performed through free email services such as Gmail increase Asia-Pacific organizations' vulnerability to phishing and other email threats. Bait attacks involve an initial email designed to harvest targeted victims' login information or private data, which is then used in future phishing attacks. Attackers often perform bait attacks to find out the victim's email account or trick the victim into an email conversation, leading to a phishing attack. Bait emails are difficult for traditional phishing detectors to prevent because they typically do not contain any text, malicious links, or attachments. Over 10,500 organizations admitted to having been targeted by at least one bait attack in September 2021. This article continues to discuss the concept of a bait attack, Barracuda's experiment on bait attacks, and recommended email security measures to mitigate the risks associated with such email threats. 

CISO MAG reports "Phishers Leverage Bait Attacks to Harvest Personal Data"