From The Wall Street Journal
How to Improve Cybersecurity? Just Eliminate the Human Factor
The computer systems that run our world—the ones that secure our financial information, protect our privacy and even keep our power grid running—all have a critical, unpatchable weakness. It’s the humans who use them.
The information hackers and con artists need to persuade someone to trust them is more readily available than ever. If you’ve ever accepted a friend request on Facebook from someone you don’t know, even someone with whom Facebook says you have mutual friends, you’re part of the problem.
Whenever someone has information about us, we are more likely to trust them. That insight has helped hackers sharpen phishing attacks, in which they spam corporate inboxes with emails that can be targeted to individuals in ways that make these emails look more credible. These more-personalized “spear phishing” attacks are more likely to succeed because they come from someone we know—or think we know.