[ Thanks to Jan
Stafford for this link. ]
“Many IT shops say that phishing is the new security
threat that worries them most. Why is it emerging as a big problem
now? How can companies protect themselves?
“Anton Chuvakin: Phishing is about users and social engineering
attacks, not about technologies. It is a new threat, but it
utilizes what most security professionals have known all along:
Most computer users don’t know and don’t want to know about
security. One can preach the value of security awareness programs,
but those still face an uphill battle of users not wanting to know
and care about security…”