"NSA: How to Protect Against Evolving Phishing Attacks"

The National Security Agency (NSA) and its US partners have published a new report describing phishing attack techniques and the defenses that organizations can implement to combat them. The Cybersecurity Information Sheet (CSI) titled "Phishing Guidance: Stopping the Attack Cycle at Phase One" delves into cybersecurity controls to reduce phishing attacks. The CSI goes over how to protect against login credential phishing and malware-based phishing, as well as remediation steps for successful phishing activity. Information Technology (IT) professionals are advised to consider following over a dozen best practices to prevent their organization from being compromised, such as phishing-resistant multi-factor authentication (MFA), phishing filters for links and attachments, protective DNS, application allow-lists, and remote browser isolation. This article continues to discuss the CSI on the latest techniques in phishing attacks and defenses that can be used against them.

NSA reports "How to Protect Against Evolving Phishing Attacks"

Submitted by grigby1