DCI KENYA Profile picture
Jul 18, 2020 27 tweets 5 min read Read on X
Avoiding Social Engineering and Phishing Attacks. ~@cyber

#CyberSafely #Cybersecurity #SocialEngineering
us-cert.cisa.gov/ncas/tips/ST04…
What is a social engineering attack?

In a social engineering attack, an attacker uses human interaction (social skills) to obtain or compromise information about an organization or its computer systems.
An attacker may seem unassuming and respectable, possibly claiming to be a new employee, repair person, or researcher and even offering credentials to support that identity. However, by asking questions, he or she may be able to piece together enough information...
.... to infiltrate an organization's network. If an attacker is not able to gather enough information from one source, he or she may contact another source within the same organization and rely on the information from the first source to add to his or her credibility.
What is a phishing attack?

Phishing is a form of social engineering. Phishing attacks use email or malicious websites to solicit personal information by posing as a trustworthy organization. For example, an attacker may send email seemingly from a reputable credit card...
... company or financial institution that requests account information, often suggesting that there is a problem. When users respond with the requested information, attackers can use it to gain access to the accounts.
What is a vishing attack?

Vishing is the social engineering approach that leverages voice communication. This technique can be combined with other forms of social engineering that entice a victim to call a certain number and divulge sensitive information.
Advanced vishing attacks can take place completely over voice communications by exploiting Voice over Internet Protocol (VoIP) solutions and broadcasting services. VoIP easily allows caller identity (ID) to be spoofed, which can take advantage of the public’s misplaced...
... trust in the security of phone services, especially landline services. Landline communication cannot be intercepted without physical access to the line; however, this trait is not beneficial when communicating directly with a malicious actor.
What is a smishing attack?

Smishing is a form of social engineering that exploits SMS, or text, messages. Text messages can contain links to such things as webpages, email addresses or phone numbers that when clicked may automatically open a browser window or email...
... message or dial a number. This integration of email, voice, text message, and web browser functionality increases the likelihood that users will fall victim to engineered malicious activity.
What are common indicators of phishing attempts?

Suspicious sender’s address. The sender's address may imitate a legitimate business. Cybercriminals often use an email address that closely resembles one from a reputable company by altering or omitting a few characters.
Generic greetings & signature. Both a generic greeting such as “Dear Valued Customer” or “Sir/Ma’am” & a lack of contact information in the signature block are strong indicators of a phishing email. A trusted organization will normally address you by name & provide...
... their contact information.

Spoofed hyperlinks and websites. If you hover your cursor over any links in the body of the email, and the links do not match the text that appears when hovering over them, the link may be spoofed. Malicious websites may look identical...
... to a legitimate site, but the URL may use a variation in spelling or a different domain (e.g., .com vs. .net). Additionally, cybercriminals may use a URL shortening service to hide the true destination of the link.

Spelling and layout. Poor grammar and sentence structure,...
...misspellings, and inconsistent formatting are other indicators of a possible phishing attempt. Reputable institutions have dedicated personnel that produce, verify, and proofread customer correspondence.

Suspicious Attachments...
An unsolicited email requesting a user download & open an attachment is a common delivery mechanism for malware.

A cybercriminal may use a false sense of urgency or importance to help persuade a user to download or open an attachment without examining it first.
How do you avoid being a victim?

Be suspicious of unsolicited phone calls, visits, or email messages from individuals asking about employees or other internal information. If an unknown individual claims to be from a legitimate organization, try to verify his or her...
identity directly with the company.

Do not provide personal information or information about your organization, including its structure or networks, unless you are certain of a person's authority to have the information.

Do not reveal personal or financial information...
.. in email, and do not respond to email solicitations for this information. This includes following links sent in email.

Don't send sensitive information over the internet before checking a website's security.
Pay attention to the Uniform Resource Locator (URL) of a website. Look for URLs that begin with "https"—an indication that sites are secure—rather than "http.”

Look for a closed padlock icon—a sign your information will be encrypted.
If you are unsure whether an email request is legitimate, try to verify it by contacting the company directly. Do not use contact information provided on a website connected to the request; instead, check previous statements for contact information.
Install and maintain anti-virus software, firewalls, and email filters to reduce some of this traffic.

Take advantage of any anti-phishing features offered by your email client and web browser
What do you do if you think you are a victim?

If you believe you might have revealed sensitive information about your organization, report it to the appropriate people within the organization, including network administrators.
They can be alert for any suspicious or unusual activity.

If you believe your financial accounts may be compromised, contact your financial institution immediately and close any accounts that may have been compromised. Watch for any unexplainable charges to your account.
Immediately change any passwords you might have revealed. If you used the same password for multiple resources, make sure to change it for each account, and do not use that password in the future.

Watch for other signs of identity theft.
Consider reporting the attack to the police, and contact @KeCIRT.

Source:us-cert.cisa.gov/ncas/tips/ST04…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with DCI KENYA

DCI KENYA Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @DCI_Kenya

May 17
DEADLY ARSENALS SEIZED AS ALCOBLOW GIVES AWAY FAKE COMMANDO

Three grenades, a firearm, rounds of ammunition, a sniper ghillie suit (camouflage) among other military gear have been recovered in a sting operation implicating a suspect who personated a KDF Captain to evade alcoblow


Image
Image
Image
Image
tests at Museum Hill, Nairobi.

In the case that has so far set three suspects into police lock up, Koffi Bill Atinda alias Don was arrested Wednesday 15th at the said roadblock after obstructing traffic police officers while on official duty by refusing to roll down his car


Image
Image
Image
Image
windows for the test like all other motorists.

The furious suspect had instead stepped out of the car and identified himself as a KDF captain, pointing at a KDF sticker displayed on the windscreen of his black Toyota Prado TX Reg No.KDL 100G.

Unable to formally identify himself


Image
Image
Image
Image
Read 12 tweets
Apr 12
SIPHONING SYNDICATE AMBUSHED, TONS OF PETROLEUM PRODUCTS IMPOUNDED

As the fight against trade in adulterated fuel & increased cases of siphoning continues, detectives have arrested 41 suspects found trading in the illegal business at an undeveloped yard behind Shell petrol


Image
Image
Image
Image
station off Lunga Road, Nairobi.

Five tankers found at the site where over 17,020 ltr of diesel, 6,110 ltr of petrol, four generators, 30 drums, siphoning pipes and jerrycans were recovered have also been impounded, with DCI Crime Scene Investigators and the Energy and Petroleum


Image
Image
Image
Image
Regulatory Authority (EPRA) officials documenting the scene.

Acting on intelligence, the Operation Support Unit team recently deployed to curb the unbecoming trend surrounded the site, rounding up the numbers who were trading with impunity.

In the yard were two petroleum
Read 6 tweets
Mar 29
CATAPULT GANG THAT STOLE MILLIONS ROUNDED UP

In a stealth operation launched to bring to an end the era of city thugs dreaded for stealing from locked motor vehicles, Nairobi region detectives have rounded up five miscreants that stole Sh900,000 and another USD 15,000 from a


Image
Image
Image
Image
businessman based in Nairobi's South C area two weeks ago.

The distressed victim who reported at Akila Police Station in Lang'ata indicated that he had just parked his BMW X1 along Muhoho Road opposite Rubis Petrol Station and entered an auto parts shop when the felons struck.


Image
Image
Image
Image
He had gone back to his car less than five minutes later, only to find a smashed rear window and a missing bag that contained the money.

Also missing were his KCB, DTB & Gulf African Bank ATM cards, his national ID card, smart driving license and assorted job-related documents.
Read 10 tweets
Dec 27, 2023
SCAMMERS IN SH2.85B GOLD SCAM ARRESTED IN KILELESHWA

The DCI Operations Support Unit (OSU) has arrested several suspects involved in a mega gold scam that targeted two Malaysian nationals, and recovered multiple tools of trade involved in the Sh2.85 billion botched fraudulence.


Image
Image
Image
Image
Having received intelligence report through Kilimani Sub-County Criminal Investigations Officer on the scamming deal planned against the two foreign men, the OSU deployed a surveillance team after the two victims jetted in the country.

Reportedly, the scammers using Rock Africa


Image
Image
Image
Image
Minier company had contacted the complainants as from October 19, 2023 through a social media platform. The suspects had alleged to transact with them 500Kg of Gold at USD 19 million equivalent to Sh2.85 billion. In the deal, the complainants had already sent USD 6,350 to members


Image
Image
Image
Image
Read 9 tweets
Dec 23, 2023
LANDS OFFICIAL BEHIND BARS AS POLICE HUNT FOR FORMER PC OVER LAND FRAUD

The Ass. Deputy Land Administrator Mr. Andrew Aseri Kirungu is in prison custody following his arrest in Kandara, Murang’a County & subsequent arraignment before Milimani Chief Magistrates’ Court on Dec 22,
2023 where he faced charges of Conspiracy to defraud, Procuring registration of land by false pretence and Abuse of office.

The Ministry of Lands officer is charged alongside former Provincial Commissioner Davis Nathan Chelogoi, after criminal investigations found them culpable
of land fraud involving a Sh1.3 billion parcel of land located at Nairobi's Loresho area.

In the case that has trudged on the corridors of justice since 2009 involving a 7.390 hactares parcel of land, several parties lay claim of the property Title Land Reference (LR) No.18485
Read 17 tweets
Sep 7, 2023
RESUMPTION OF POLICE CLEARANCE SERVICES

The processing of Police Clearance Certificates at DCI Headquarters has been fully restored after a duration of system upgrade.

The office of the Principal Criminal Registrar (PCR) has effected pragmatic measures to clear the backlog
resulting from the temporary system hitches, which saw the unit resort to manual processing to address dire cases.

We highly regret the delays experienced over the period, and assure our clients of enhanced and expeditious services.

The PCR further wishes to clarify that
applicants no longer need to book fingerprinting dates on the ecitizen portal, but must select their preferred fingerprinting centres based on convenience.

More so, to avoid instances of return to sender, applicants are reminded to ensure that the ID card copies attached to the
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

:(