At The Identity Organisation, we're here to help!

    Or drop us a mail!

    Your privacy is important to us, and we want to communicate with you in a way which has your consent and which is in line with UK Law on data protection. As a result of a change in UK law on 25th May 2018, by providing us with your personal details you consent to us processing your data in line with current GDPR requirements.

    Here is where you can review our Privacy & GDPR Statement

    To remove consent at any time, please e-mail info@tidorg.com with the word "unsubscribe" as the subject.

    +44 (0) 1628 308038 info@tidorg.com

    Reducing Stress with CBD Is the Latest Theming for Phishing Attacks

    CBD Oil Phishing Attacks

    Spanning three languages and at least 15,000 unique phishing emails, this latest phishing campaign targets stressed out workers in the U.S. and France, avoiding detection and promising to help with their ailments.

    Let’s face it: we’re all stressed. The last year was a lifetime of stress packed into 12 months for some. And many have turned to Cannabidiol (CBD) products as a means of destressing and medicinal use for some ailments. A new set of campaigns has been spotted by security researchers at Vade Secure that have focused on corporate users using Microsoft 365 promoting CBD products to help with stress.

    According to Vade, social engineering is used to “play on individuals’ fears and deliver false promises to trick victims into clicking on dangerous links or downloading malicious files.” Evasive methods including remote images, randomized URLs, delayed links, and delayed content activation are also common to keep these emails from being detected as malicious by security solutions.

    Vade recommends that “business owners must combine strong email defenses with user awareness training programs.” Security solutions will help when cybercriminals make a mistake and fail to avoid detection. That’s why your users need to play a role in your defenses by enrolling in continual Security Awareness Training to ensure they are both up to date on the latest scams and are taught to be continuously vigilant when interacting with unsolicited emails (including ones that are “selling” CBD products), staying focused on corporate security and not falling for the convenience of an interesting email that just “happened” to be sent to them.

    Free Phishing Security Test

    Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

    PST Results

    Here’s how it works:

    • Immediately start your test for up to 100 users (no need to talk to anyone)
    • Select from 20+ languages and customize the phishing test template based on your environment
    • Choose the landing page your users see after they click
    • Show users which red flags they missed, or a 404 page
    • Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
    • See how your organization compares to others in your industry
    Go Phishing Now!

    PS: Don’t like to click on redirected buttons? Cut & Paste this link in your browser: https://info.knowbe4.com/phishing-security-test-partner?partnerid=001a000001lWEoJAAW

    Sign Up to the TIO Intel Alerts!

    Back To Top