PETALING JAYA: Spearphishing attacks such as the ones that targeted the Civil Aviation Department and the National Security Council require a lot of planning and work, said a cyber security expert.
These point to either a very skilled attacker or group of hackers who have the know-how to spoof an e-mail address to make it appear as if the message is coming from a familiar sender, said Dhillon Kannabhiran.
Kannabhiran is chief executive of Hack In The Box which organises the annual HITBSecConf series of network security conferences.
He said that sensitive and confidential documents should always be encrypted as an added layer of security against hackers.
How sophisticated an attack was, Kannabhiran said, depended on which version of the Microsoft Windows operating system was on the victim’s computer and how up to date the system security was.