I’m pretty sure that the FBI issued the warning just intended on posting a cyber security best practice every day people could use. Then the media latched onto it as if it was an emergency announcement.
Cargo culting security in a way that decreases convenience makes people less likely to follow security advice that mitigates an actual threat. Spending good will credit on far-fetched threats is foolish.
It has been executed as a proof of concept, but security is part of my job and I haven’t heard of it being used in a real world example… if it did, my boss would have sent out a company wide blast.
Is there any evidence that this kind of attack has ever been used?
I’m pretty sure that the FBI issued the warning just intended on posting a cyber security best practice every day people could use. Then the media latched onto it as if it was an emergency announcement.
Cargo culting security in a way that decreases convenience makes people less likely to follow security advice that mitigates an actual threat. Spending good will credit on far-fetched threats is foolish.
Yes, but no.
It has been executed as a proof of concept, but security is part of my job and I haven’t heard of it being used in a real world example… if it did, my boss would have sent out a company wide blast.