![Security training and freelancers](/content/images/size/w560h315/2024/07/08_Security-training-and-freelancers-1.jpg)
Security training and freelancers
Freelancers are often asked to complete a company's security training and awareness courses, but few companies communicate clearly about this in hiring conversations.
Read MoreThreat actors are getting increasingly creative with their extortion tactics, with triple extortion strategies becoming more common.
And we’re also seeing new cases of swatting: an extortion tactic that leaves targets with no choice but to pay a ransom, or suffer intolerable consequences if they don’t.
‘Swatting’ involves a threat actor making false reports to emergency services, most commonly the police. They do this to trigger the dispatch of (often armed) law enforcement officers to the target’s location, under false pretences – for example, reports of bomb threats or criminal allegations.
As a result, a ransomware situation escalates rapidly and in a way that’s deeply alarming for the victim, and puts immense pressure on them to pay the ransom. It introduces the potential for real-life danger and violence into the cyberattack vector, and can put lives at risk.
In essence, it’s prank calling – but with dangerous consequences.
Unfortunately, yes.
These recent examples – and many more – highlight the fact that threat groups are increasingly relying on swatting to cause real distress and disruption, and force victims to respond to ransom demands.
It’s an alarming trend – and increased awareness, along with preventative measures, are needed.
Like many social engineering strategies, swatting is very hard to predict and prevent. But the cybersecurity industry can support with measures including:
Swatters will continue to swat. But collaboration and information-sharing between targets, police, and cybersecurity experts can help to build a clearer picture of patterns within the trend, and develop more effective preventative measures in the future.
Join the newsletter to receive the latest updates in your inbox.
Freelancers are often asked to complete a company's security training and awareness courses, but few companies communicate clearly about this in hiring conversations.
Read MoreGuided by Stuart Seymour (CISO at Virgin Media), we look at the value of neurodiverse talent in cybersecurity – and what the industry can do to welcome neurodiverse professionals.
Read MoreSaeed Abu-Nimeh (Founder and CEO at SecLytics) is one of the world’s leading experts on machine learning in cybersecurity – and he’s driving innovation to streamline security operations with ML.
Read More