Ray Schultz reports:
Lucy Security Inc. says its Simulated Phishing template design was used in a recent data breach of Wipro, an IT outsourcing firm based in India.
Hackers “downloaded and copied a simulated phishing template, as part of their attack, using their own code and servers to deliver the attacks,” states Colin Bastable, CEO of Lucy Security.
Bastable adds, however, that “there is no evidence that hackers used Lucy software, other than using the template design.”
The templates are designed so that “legitimate users can expose their co-workers and clients to realistic but simulated phishing and social engineering attacks,” Bastable notes.
He continues that “clearly we would prefer that it was not used in this fashion.”
Read more on MediaPost.