logo 144x40

Trailer

ENEMY AT THE GATE

Season 11, Episode 2

In this month’s NINJIO AWARE episode, users learn about a new kind of cyber threat: evil twin attacks.

Evil twin attacks use fake public Wi-Fi networks to trick people into connecting and exposing their data. Always avoid unknown hotspots and confirm legitimate networks with staff before signing on.

WATCH THE FULL EPISODE

WATCH FULL EPISODE
check-3

Familiarity can be deceptive. Pay close attention to official-looking communications that are asking you to grant too many permissions.

check-3

OAuth app consent requests can be risky. Don’t just trust the look of the app; always check the permissions being requested.

check-3
If you’re asked to install an OAuth app unexpectedly, do not proceed unless you’re certain it’s safe. When in doubt, deny the request and contact your IT team.

KEY TAKEAWAYS

  • An evil-twin is a look-alike hotspot run by a bad actor. It can intercept traffic and trick you into entering credentials via fake portals or reverse-proxy logins.
  • Bad actors use evil-twin attacks to reuse your session and access accounts posing as you, even if MFA was used.
  • Whenever possible, use trusted Wi-Fi or a personal hotspot. If you must use public Wi-Fi, use a trusted VPN and only log into sites with valid HTTPS.

 

WE TEACH PEOPLE HOW TO STAY SAFE ONLINE

NINJIO’s human risk management platform leverages engaging cybersecurity awareness training videos that users will actually watch and personalized security coaching plans that adapt to user behavior.

Our cybersecurity awareness training keeps employees focused on the latest cyber threats, while our adaptive security coaching focuses on the social engineering tactics that exploit human emotions.

Each trainee gets an Emotional Susceptibility Profile based on their engagement with coaching and simulated phishing tools.

WATCH FULL EPISODE