Cyberattack: How we were phished by professional hackers
Cyberattack: How we were phished by professional hackers
5:41

Cyberattack: How we were phished by professional hackers

Privacy
All right, so Graham, I got hacked. Dan, you are a seasoned tech reporter, you know everything that there is to know, how did that happen? [MUSIC] I'm glad I fooled you, I know nothing You cover technology, I cover cyber security. I was incredibly. I clicked the link on the email. But you get emails all the time, I'm sure you ignore it. Emails that look like phishing before, what got you. The problem is that it came from a trusted source. One of our colleagues. Here at CBS News. So of course, like a dummy, I clicked the link. I saw emergency, alert, emergency, alert, so I emergency alert. But wait, no no, like a trusted person didn't actually send you the email, you just thought it was a trusted person. That's exactly right [LAUGH] Because I was hacked for two weeks on purpose And so were you. What did you fall for? That's the thing. So I kind of wanted to say how stupid of you to click this but I was probably worse than this. I fell for PR pitches or what looked like PR pitches. Some Some time they referenced people close to me and sometimes they just had really attractive messages and one of them was like you are invited to a food and beer festival and I thought mm-hm and I clicked the link and immediately Dale that I had put the whole company in danger. For a liitle while I felt slightly less stupid when I read the stats that one in seven email can be a A phishing attack email, and then I clicked another link and, I went back to feeling stupid. [MUSIC] And, one that made me feel the worst was one that said, we want to let you know that yout tweeter account has been hacked and, to show the screen grab of what looked like my own hacked. All I had to do was check My own account, and see my own Twitter page, and know that it was fine. But instead I clicked the screen grab. Did that email come from me? It appeared to come from you, yeah. It said, just so you know, your account's been hacked. I thought it was you! [LAUGH] I clicked the same email, that looked like it was coming from you. We're easy targets, and this company should be wary of us. Every company should be [UNKNOWN] of every single employee.The thing is with fishing it's really easy to fall for this because and an attacker will spend a lot of time, more time than your eye expected Crafting these campaigns that are designed to fool us. So let's talk about what to do, knowing that. I myself, since we did this experiment, have gotten several emails that I'm pretty sure are legitimate. But I don't even want to respond to that but some of them are from former colleagues and friends and I need to figure out how to click the links in those email and respond to them without worrying that they are actually hackers that are trying to get them what should I do. I put the thin foil hat on first But after I'm done with the crazy conspiracy theories, I try to be as sober as possible and I tried to gain not react emotionally to an email. So when you and I got those attack emails that said, hey, your accounts been hacked, that's an emotional trigger. I try not to have an emotional reaction. [UNKNOWN] It's hard because these emails are crafted and designed to make us feel emotional. What else should I do? So I guess we're talking about kind of hovering over the link, make sure it's legit. If it says this is a CNN article, it should say CNN.com. Did I not say that? Well- [LAUGH] Even looks like it's as skimpy as news article. You can hover over the link and make sure that it actually direct the CBS news. But the email address, the sender, that's important too, right? That's right. It might look like it's that person's email address. Instead of it saying, let's say dan.patterson@ whatever.com I wanna make sure that it lines up to yours danpatterson@whatever.com. Make sure that the little periods and dashes are all axactly as you expect them t be. And also, the number one lesson I think I learned, was don't download anything. If it's a word doc from someone you're working with, and it says this is an edit to the story we're working on together. Or it says it's coming from HR, and you need to review new company policies, never download it unless you're 100% sure that that person actually sent it. [MUSIC] All right. So, what you're telling me is that never trust any email, or any message all pony and And design it for me, right? [MUSIC] Basically, I mean we can't live with our lives getting a thousand emails a day while we're going. Never trust anything. But we have to at least be skeptical for us. We have to think to ourselves, does this fit the normal pattern of the person sending it to me. Do they normally have typos in their emails? So if you are not skeptical or dubious. So your emails will continue to, like me, get tricked and every single time we'll click the links. But if you're like Graham, then you will be a little more cautious with your email tactics and strategy. But hey, look, phishing can happen to everyone and we should just expect this, right? It's the new normal. Yeah, but I wouldn't advise anyone to be like me. [LAUGH] Or me. [MUSIC]

Up Next

Everything Just Revealed at Nvidia's GTC AI Conference
nvidiastill

Up Next

Everything Just Revealed at Nvidia's GTC AI Conference

Nvidia Reveals Omniverse Cloud Streams to the Vision Pro
nvidia-vision-pro-image

Nvidia Reveals Omniverse Cloud Streams to the Vision Pro

Nvidia Shows Project GROOT and Disney Bots at GTC Conference
robot-2

Nvidia Shows Project GROOT and Disney Bots at GTC Conference

Expert vs. AI: Is Now the Time to Buy an EV?
gettyimages-1178244881

Expert vs. AI: Is Now the Time to Buy an EV?

Apple Has Big Ideas for a Smart Ring
240314-yt-omt-apple-ring-v4

Apple Has Big Ideas for a Smart Ring

SpaceX's Starship 3rd Flight Attempt (Supercut)
spacexstarshiptestflight1

SpaceX's Starship 3rd Flight Attempt (Supercut)

Apple Has Big AI Plans for Mac — and iPhone, Too
240307-yt-omt-ai-siri-v03

Apple Has Big AI Plans for Mac — and iPhone, Too

Apple Updates 13- and 15-Inch MacBook Air With M3 Chips
macbookair-news-00-00-17-16-still002

Apple Updates 13- and 15-Inch MacBook Air With M3 Chips

Apple Makes the Vision Pro Store Demo an Entertaining Ride
240229-site-what-its-like-to-demo-vision-pro-v3

Apple Makes the Vision Pro Store Demo an Entertaining Ride

Apple Sports Is the Next Step in Apple's Big Sports Plans
240222-site-one-more-thing-apple-sports-v2

Apple Sports Is the Next Step in Apple's Big Sports Plans

Tech Shows

The Apple Core
apple-core-w

The Apple Core

Alphabet City
alphabet-city-w

Alphabet City

CNET Top 5
cnet-top-5-w

CNET Top 5

The Daily Charge
dc-site-1color-logo.png

The Daily Charge

What the Future
what-the-future-w

What the Future

Tech Today
tech-today-w

Tech Today

Latest News All latest news

PlayStation 5 Pro Leaked: Everything We Know
playstation5pro-leak-clean

PlayStation 5 Pro Leaked: Everything We Know

Everything Just Revealed at Nvidia's GTC AI Conference
nvidiastill

Everything Just Revealed at Nvidia's GTC AI Conference

Nvidia Reveals Omniverse Cloud Streams to the Vision Pro
nvidia-vision-pro-image

Nvidia Reveals Omniverse Cloud Streams to the Vision Pro

Nvidia Shows Project GROOT and Disney Bots at GTC Conference
robot-2

Nvidia Shows Project GROOT and Disney Bots at GTC Conference

Expert vs. AI: Is Now the Time to Buy an EV?
gettyimages-1178244881

Expert vs. AI: Is Now the Time to Buy an EV?

The PlayStation Portal Built-In Volume Is too Loud: Here's How to Keep It Low
playstation-portal-audio-options-thumb2

The PlayStation Portal Built-In Volume Is too Loud: Here's How to Keep It Low

Most Popular All most popular

First Look at TSA's Self-Screening Tech (in VR!)
innovation

First Look at TSA's Self-Screening Tech (in VR!)

Samsung Galaxy S24 Ultra Review: More AI at a Higher Cost
240123-site-samsung-galaxy-s24-ultra-review-4

Samsung Galaxy S24 Ultra Review: More AI at a Higher Cost

'Circle to Search' Lets Users Google From Any Screen
circlesearchpic

'Circle to Search' Lets Users Google From Any Screen

Asus Put Two 14-inch OLEDs in a Laptop, Unleashes First OLED ROG Gaming Laptop
asus-preces-00-00-25-11-still003

Asus Put Two 14-inch OLEDs in a Laptop, Unleashes First OLED ROG Gaming Laptop

Samsung Galaxy Ring: First Impressions
samsung-galaxy-ring-clean

Samsung Galaxy Ring: First Impressions

Best of Show: The Coolest Gadgets of CES 2024
240111-site-best-of-ces-2024-1

Best of Show: The Coolest Gadgets of CES 2024

Latest Products All latest products

First Look: The $349 Nothing Phone 2A Aims to Brighten Your Day
240304-site-nothing-phone-2-first-look-v3

First Look: The $349 Nothing Phone 2A Aims to Brighten Your Day

Best of MWC 2024: Bendable Screens, AI Wearables and More
240229-site-best-of-show-at-mwc

Best of MWC 2024: Bendable Screens, AI Wearables and More

This Concept Laptop from Lenovo Has a Transparent Display
240225-site-lenovo-translucent-laptop-concept-v3

This Concept Laptop from Lenovo Has a Transparent Display

Motorola's Rollable Concept Phone Wraps on Your Wrist
240225-site-motorola-rollable-concept

Motorola's Rollable Concept Phone Wraps on Your Wrist

See Adobe Lightroom on the Apple Vision Pro
adobe-lightroom-00-02-58-03-still006-1

See Adobe Lightroom on the Apple Vision Pro

This $400 Cane Has a Built-In Phone
p1022441-mp4-15-35-32-23-still001

This $400 Cane Has a Built-In Phone

Latest How To All how to videos

Windows 11 Tips and Hidden Features
240311-site-windows-11-hidden-tips-and-tricks-v2

Windows 11 Tips and Hidden Features

Vision Pro App Walkthrough -- VisionOS 1.0.3
VisionOS 1.0.3

Vision Pro App Walkthrough -- VisionOS 1.0.3

Tips and Tricks for the Galaxy S24 Ultra
240216-site-galaxy-s24-ultra-tips-and-hidden-features-2

Tips and Tricks for the Galaxy S24 Ultra

TikTok Is Now on the Apple Vision Pro
tiktok-on-vision-pro-clean

TikTok Is Now on the Apple Vision Pro

Get Your TV Ready for the Big Game: Super Bowl Setup Tips
superbowl-tv-settings-thumb1

Get Your TV Ready for the Big Game: Super Bowl Setup Tips

How to Use a Quest 3 Like the Vision Pro
240202-site-spatial-computing-on-meta-quest-3

How to Use a Quest 3 Like the Vision Pro