Cyberattack: How we were phished by professional hackers
5:41

Cyberattack: How we were phished by professional hackers

Privacy
All right, so Graham, I got hacked. Dan, you are a seasoned tech reporter, you know everything that there is to know, how did that happen? [MUSIC] I'm glad I fooled you, I know nothing You cover technology, I cover cyber security. I was incredibly. I clicked the link on the email. But you get emails all the time, I'm sure you ignore it. Emails that look like phishing before, what got you. The problem is that it came from a trusted source. One of our colleagues. Here at CBS News. So of course, like a dummy, I clicked the link. I saw emergency, alert, emergency, alert, so I emergency alert. But wait, no no, like a trusted person didn't actually send you the email, you just thought it was a trusted person. That's exactly right [LAUGH] Because I was hacked for two weeks on purpose And so were you. What did you fall for? That's the thing. So I kind of wanted to say how stupid of you to click this but I was probably worse than this. I fell for PR pitches or what looked like PR pitches. Some Some time they referenced people close to me and sometimes they just had really attractive messages and one of them was like you are invited to a food and beer festival and I thought mm-hm and I clicked the link and immediately Dale that I had put the whole company in danger. For a liitle while I felt slightly less stupid when I read the stats that one in seven email can be a A phishing attack email, and then I clicked another link and, I went back to feeling stupid. [MUSIC] And, one that made me feel the worst was one that said, we want to let you know that yout tweeter account has been hacked and, to show the screen grab of what looked like my own hacked. All I had to do was check My own account, and see my own Twitter page, and know that it was fine. But instead I clicked the screen grab. Did that email come from me? It appeared to come from you, yeah. It said, just so you know, your account's been hacked. I thought it was you! [LAUGH] I clicked the same email, that looked like it was coming from you. We're easy targets, and this company should be wary of us. Every company should be [UNKNOWN] of every single employee.The thing is with fishing it's really easy to fall for this because and an attacker will spend a lot of time, more time than your eye expected Crafting these campaigns that are designed to fool us. So let's talk about what to do, knowing that. I myself, since we did this experiment, have gotten several emails that I'm pretty sure are legitimate. But I don't even want to respond to that but some of them are from former colleagues and friends and I need to figure out how to click the links in those email and respond to them without worrying that they are actually hackers that are trying to get them what should I do. I put the thin foil hat on first But after I'm done with the crazy conspiracy theories, I try to be as sober as possible and I tried to gain not react emotionally to an email. So when you and I got those attack emails that said, hey, your accounts been hacked, that's an emotional trigger. I try not to have an emotional reaction. [UNKNOWN] It's hard because these emails are crafted and designed to make us feel emotional. What else should I do? So I guess we're talking about kind of hovering over the link, make sure it's legit. If it says this is a CNN article, it should say CNN.com. Did I not say that? Well- [LAUGH] Even looks like it's as skimpy as news article. You can hover over the link and make sure that it actually direct the CBS news. But the email address, the sender, that's important too, right? That's right. It might look like it's that person's email address. Instead of it saying, let's say dan.patterson@ whatever.com I wanna make sure that it lines up to yours danpatterson@whatever.com. Make sure that the little periods and dashes are all axactly as you expect them t be. And also, the number one lesson I think I learned, was don't download anything. If it's a word doc from someone you're working with, and it says this is an edit to the story we're working on together. Or it says it's coming from HR, and you need to review new company policies, never download it unless you're 100% sure that that person actually sent it. [MUSIC] All right. So, what you're telling me is that never trust any email, or any message all pony and And design it for me, right? [MUSIC] Basically, I mean we can't live with our lives getting a thousand emails a day while we're going. Never trust anything. But we have to at least be skeptical for us. We have to think to ourselves, does this fit the normal pattern of the person sending it to me. Do they normally have typos in their emails? So if you are not skeptical or dubious. So your emails will continue to, like me, get tricked and every single time we'll click the links. But if you're like Graham, then you will be a little more cautious with your email tactics and strategy. But hey, look, phishing can happen to everyone and we should just expect this, right? It's the new normal. Yeah, but I wouldn't advise anyone to be like me. [LAUGH] Or me. [MUSIC]

Up Next

My Quest to Understand NFT Art (And Why I Bought One)
bridget-4

Up Next

My Quest to Understand NFT Art (And Why I Bought One)

Mars Sample Return Mission Will Bring Rocks and Air to Earth
mars-samples-back-to-earth-v2-1

Mars Sample Return Mission Will Bring Rocks and Air to Earth

Watch Samsung Introduce Galaxy Buds 2 Pro
samsungevent-galaxybuds2

Watch Samsung Introduce Galaxy Buds 2 Pro

Make Your iPhone Faster by Clearing the Cache
cachecnet

Make Your iPhone Faster by Clearing the Cache

Nasal Sprays Could be the Most Effective Weapon Against COVID
nasal-sprays-2

Nasal Sprays Could be the Most Effective Weapon Against COVID

The Future of Eye Exams Lies in VR Headsets
heru-12

The Future of Eye Exams Lies in VR Headsets

How Apple and Google Make Photobombs a Thing of the Past
photobombpic-cnet

How Apple and Google Make Photobombs a Thing of the Past

Black Holes: Space's Biggest Puzzle Explained
black-holes-seq-00-10-57-07-still001

Black Holes: Space's Biggest Puzzle Explained

Pixel 6A vs. iPhone SE: The Cameras Are Surprisingly Different
pixelvsiphone-camcompare-screengrab3

Pixel 6A vs. iPhone SE: The Cameras Are Surprisingly Different

Tech Shows

The Apple Core
apple-core-w

The Apple Core

Alphabet City
alphabet-city-w

Alphabet City

CNET Top 5
cnet-top-5-w

CNET Top 5

The Daily Charge
dc-site-1color-logo.png

The Daily Charge

What the Future
what-the-future-w

What the Future

Tech Today
tech-today-w

Tech Today

Latest News All latest news

Moto Edge 2022: First Look at Motorola's $498 Phone
motoedge-fl-00-02-03-08-still003

Moto Edge 2022: First Look at Motorola's $498 Phone

The Czinger 21C Is 3D-Printed and Astonishing
Side view of the Czinger 21C hypercar in motion

The Czinger 21C Is 3D-Printed and Astonishing

My Quest to Understand NFT Art (And Why I Bought One)
bridget-4

My Quest to Understand NFT Art (And Why I Bought One)

7 Tips to Get More Out of Your Roku TV
screenshot-2022-08-16-at-12-52-46.png

7 Tips to Get More Out of Your Roku TV

Porsche Pushes the 911 to New Extremes With the New GT3 RS
Porsche 911 GT3 RS OGI

Porsche Pushes the 911 to New Extremes With the New GT3 RS

Mars Sample Return Mission Will Bring Rocks and Air to Earth
mars-samples-back-to-earth-v2-1

Mars Sample Return Mission Will Bring Rocks and Air to Earth

Most Popular All most popular

Top 5 iPhone 14 Rumors
iphone14-rumors2021-200000

Top 5 iPhone 14 Rumors

Mars Sample Return Mission Will Bring Rocks and Air to Earth
mars-samples-back-to-earth-v2-1

Mars Sample Return Mission Will Bring Rocks and Air to Earth

Ride1Up's 700 Series E-Bike Review: It Replaced My Car
220815-yt-ride1up-700-series-ebike-review-site-1

Ride1Up's 700 Series E-Bike Review: It Replaced My Car

Porsche Pushes the 911 to New Extremes With the New GT3 RS
Porsche 911 GT3 RS OGI

Porsche Pushes the 911 to New Extremes With the New GT3 RS

Is It Time to Finally Buy an Electric Car Under the New Tax Credit Rules?
ev-credits-00-08-35-16-still170

Is It Time to Finally Buy an Electric Car Under the New Tax Credit Rules?

The Apple Watch Has Life-Saving Features
220811-yt-the-apple-watch-saved-my-life-and-could-save-yours-too-site-1

The Apple Watch Has Life-Saving Features

Latest Products All latest products

Moto Edge 2022: First Look at Motorola's $498 Phone
motoedge-fl-00-02-03-08-still003

Moto Edge 2022: First Look at Motorola's $498 Phone

Galaxy Watch 5: My First 2 Days With Samsung's Watches
watch-5-thumb

Galaxy Watch 5: My First 2 Days With Samsung's Watches

Samsung Galaxy Z Flip 4 and Z Flip 3 Specs Compared
220809-yt-galaxy-z-flip-4-vs-z-flip-3-v2

Samsung Galaxy Z Flip 4 and Z Flip 3 Specs Compared

Samsung Galaxy Z Fold 4 First Take: Bigger Cover Screen, New Cameras
jje-9771

Samsung Galaxy Z Fold 4 First Take: Bigger Cover Screen, New Cameras

MacOS Ventura Public Beta: The 3 Best New Features
thumb1

MacOS Ventura Public Beta: The 3 Best New Features

What You Should Know About the Nothing Phone 1
nothingphone1-cms

What You Should Know About the Nothing Phone 1

Latest How To All how to videos

How to Clean Your Keyboard's Sticky Keys
3keyboards

How to Clean Your Keyboard's Sticky Keys

How to Play Games from PlayStation Plus on PC
psstill

How to Play Games from PlayStation Plus on PC

How to Delete or Disable Your Instagram Account
phoneonorange

How to Delete or Disable Your Instagram Account

Fix Your iPhone Screen With Apple's Self-Service Repair Kit
dsc00641

Fix Your iPhone Screen With Apple's Self-Service Repair Kit

How to Buy a Budget Laptop in 2022
budgetlaptops-00-08-35-15-still001

How to Buy a Budget Laptop in 2022

Google Pay: How to Set Up and Use
googlepay-inhand

Google Pay: How to Set Up and Use