Conversation hijacking is one of the more sophisticated threats identified in our free ebook, 13 Email Threat Types to Know About Right Now. In its simplest form, this attack involves a criminal communicating with a potential victim while impersonating a trusted source. The recent attack on Norfund used multiple instances of this tactic. Once the attackers understood the patterns of Norfund’s communications with potential clients, they were able to impersonate both sides of a conversation. Norfund was receiving fake communications and documents from the client, and the client was receiving fake communications and instructions from Norfund. Norfund was scammed into sending a $10 million investment to the criminal’s account, and the client waited patiently for the overdue funds because they were advised of a delay caused by the pandemic.
Conversation hijacking attacks are growing rapidly and can be difficult to detect.
The Barracuda Total Email Protection Bundle offers a complete suite of email protection to help defend your company from these attacks. For more information on how to protect yourself, download the e–book here.
Christine Barry is Senior Chief Blogger and Social Media Manager at Barracuda. In this role, she helps bring Barracuda stories to life and facilitate communication between the public and Barracuda internal teams. Prior to joining Barracuda, Christine was a field engineer and project manager for K12 and SMB clients for over 15 years. She holds several technology credentials, a Bachelor of Arts, and a Master of Business Administration. She is a graduate of the University of Michigan.
Connect with Christine on LinkedIn here.