How Email is Used to Breach Security: Methods and Techniques
Welcome back to end user email. Security Course. My name is Melanie Judge, and in previous video, you have been able to learn about wise email security so important in the eyes. Is it becoming more and more topic off interest for people doing security?
Now, in this video, we're going to talk about,
uh, how is email used for cyber attacks?
What kind of different types of female based attacks are there?
And also, how can your PC be infected using email? Not, I mean, when you are using email,
how can your PC be infected?
if you look at what's happening today in the world of cyber attacks, fishing, ease the number one method for intrusion using email, and probably one of the most common ways that cyber criminals today are, uh,
getting access to systems, which they're not authorized to access.
So what is fishing? Just explain. Its simple
fishing is, ah, email technique in which you receive an email which might look, uh, that is coming from somebody you know. Or it may look
the that he doesn't have to look like that. So it might be coming from somebody you don't know.
But the text of the email and the subject of the email is interesting enough so that you click on it. You open your email. This email may have some attachments in it, or this email may have some,
uh, links in it. And if you click on them,
or if you just open the email, your PC can get infected.
Now. I'm not saying that some anti virus solutions or Melber solutions cannot stop some of these intrusions. Probably they can, especially if it's some kind off, Web based
attack. So if you have to click on the link,
but if this is ah well conceived type of attack,
it can penetrate your
Why is it called fishing? Because, of course, in hacking World F is replaced by pH, so it's spelled differently. But the idea behind fishing is that you send that email to substantial number of addresses,
and you simply wait for somebody to catch it similar to fishing with nets. So you're thrown out in the water and whatever you can't sheets, it's a good catch. So
you are not targeting somebody special
wise and fishing. Still working because, as I mentioned in previous lesson is because and users do not take I t securities is security seriously?
So, according to some researchers, 12% of users click on phishing email, so they receive an email that is obviously not meant for them. That is obviously not something not wrong with it. But 12% of users still click on it,
and 4%. So 1/3 of those who click on phishing email
actually click a link I have heard
about from a friend of mine about one administrator who actually clicked on a link and even left his administrate, their password and user name on dealing that open. So it was basically Ling that was gathering your credentials.
So these things happen. Still, today, people simply don't think or they don't care.
And this is the biggest problem.
Now, when you receive such an email,
my work can be an attachment. So if you receive something that looks like it's coming from somebody you know, and there is a like it's business, so they're sending something to like some photos or world file or Excel file or something that is executable whatever.
If you don't care, you might open that attachment or run it
and then it's too late. Then you have infected your PC,
but also Mallorcan be in the body and of any mail. It can be a link like I said before, or it can be just in the HTML code dividend about the email
and to add to fishing. There is something called spear phishing, which is basically when you target the attack to a certain individual or people working in a certain company.
And then you try mawr to make look that the these emails are
genuine, more genuine than
then the simple fishing, which in which you send the generic email and you expect something to happen So it can be, for example, mail, which in subject has something like
theorize on it. Let's just see how it can look.
So there is a knee mail in my hook, and I'm using Outlook as my email client.
And okay, this this email I sent to myself.
But can you imagine? It's somebody working with me and they receive email like this, and in this email, I'm saying, Hi, Mylan. Through his new mileage tracking report template you should use for my long, blah, blah, blah, blah blah
it can have all this mail off course is not infected with virus. I wouldn't infect myself with the wires, but
just gives you an example. So you can double click on this file and open
infected Excel file.
Or you can click a link
just open the website, which would also contain this file if my contained this file, but
just opening the page will infect your PC
or and this is very important. People don't usually understand this. The body often email can be infected. How? Because if you look here
in outlook, we can see the actual look of this message.
And when you look at this, you see that this message is actually an HTML file. So html file is basically a list of commands which are then interpreted by your email client in this case, outlook.
And then, ah, make sure that your message is displayed like it's supposed to be a so in the way it's written.
And the thesis html file doesn't have malicious code, but because this is this is basically ah, code.
It can contain some malicious code which won't be visible on Europe
in your message here in Outlook, but we'll execute some commands, maybe open the back door or upload some some content from some some website, which will then in fact, your PC. So
even opening phishing emails can be enough for you to infect your PC. Now, there are methods of protection
against these things, but they're never 100% foolproof.
uh, this is about how your PC can be infected using email.
And now let's talk a little bit more about how do attachments, in fact, your PC.
when you when you type of word file, this is not a text file. You know that you can in, for example, makers of word save your file as a text file,
and then it contains just pure text. And that kind of file definitely cannot, in fact, your PC,
however, word Excel files. Basically, all office files
are in XML format,
and if you're using some other type off office suit,
it can also contain files in some other former. But it is still
something that has a meta data and basically a code that is viewed on your screen by that software in a certain way.
So you can embed some malicious cold inside that file,
and then it gets executed, and then it, in fact, see a PC.
Pdf files as well. They can have system commands that launch Melber,
and for they can have some hidden objects that are not visible on the screen when you open a pdf file.
But these objects can buy fast fires detection there. This is very important there. Launched, been file is open. So even if you double click and see that something is wrong with the file, it can be too late.
And then with PdF file, which is one of the most common ways for people to send
to each other.
You can infect your BC
also, you can these guys malware unifies like J Peg
Um, even the militias cold in them. So basically
thistles the way that you can essentially infect your PC just by opening some of these attachments in your email. Or if you're on ah website and you download these files and open them
also, you get infected so these things are basically
very, very dangerous, and this is the reason why
I recommend everybody
to look at these files the Tokyo team emails and to see if they're coming from somebody
that is not known on. And if they look suspicious, just don't open them.
It's simple. Is that so? If you have, for example,
if you work for some kind of cooperation, you probably have some kind of people working for your company that they're there to do deal and do something about phishing emails. So if you see an email that is, ah, looking suspicious, don't open it,
forwarded to or follow the procedure that is established
by that the people who are there to prevent fishing. Now, how do you see that? Let's go back to look
and look at this. So this is the basic
look out outlook layouts that most of people I know you, some of them
they're using the reading pain as well. So
when you click on email, it just opens the preview off the tee mail.
in general drool is that when you are using the reading pain, you shouldn't be infected. But if
viruses in the body of une male, you might so reading pain is not recommended,
and the other thing that you
should do, so we'll turn it off.
You have this message preview here, and this is very important. Why?
Because if we turn it on like it did now, when you look at this male,
you see that from is actually my email address.
Now, what you have seen before, just my name and somebody might generate for them Pull a Gmail address with this,
uh, which look similar.
And then make sure that in
ah, name of the sender is my name.
So if they know somebody who is working for my company,
just bogus email
and, um, send it to me.
And if I'm in communication with that personal the time, it will look like that person sent me an email or if I'm in the regular communication when somebody outside my company But that person is, for example, working for a parking company.
It is a customer or vendor or supplier, whatever.
And I'm getting emails from them on a regular basis. Name
my generate the email that looks like this. So if you're turning on the message preview before opening every email, you should just look it from and check if this is okay.
And even if you have opened an email and you see something like this,
don't click on.
Don't open the attachment or don't click on the link if you're not 100% absolutely sure that this email is genuine. So these things are simply things that one should look at all times.
at the end of this Ah,
a lesson. Let's just do the short recap.
So in this video I talked about how is email used for cyber decks?
And you have seen that it is used to penetrate your security by making you believe that your opening mail that is coming from a genuine person instead of cyber criminal,
that all of the email based attacks are basically
around fishing. So you receive an email and this email looks like it's OK. So you open it or you open the attachment or you click on the link,
and this is the way that your PC can be infected
So if you're using email client Lee Outlook, you have seen how you can protect yourself at least partially but not 100%. And the type of this protection is based on the fact
that you will have, ah, more insight in an email you're receiving and see if it's coming from a genuine person or it looks like it's something
that is actually a type of cyberattack, so this is the end of this lesson.