"It's going to be difficult [for companies] to deny or push back against the bring-your-own-device movement, but it can't be just an open slate," he said. Ã'Â
Meanwhile, last week's cyberattacks that took several South Korean banks and broadcasters temporarily offline likely started with a spear-phishing campaign, F-Secure said.
In comparing the hard-drive wiping malware used in the Korean attacks to exploits in its database, the vendor found it was similar to other wipers sent to victims in RAR files that arrived as email attachments. RAR is a proprietary archive file format that support data compression.
"The only thing we've ever seen archive files deployed as is as an attachment in a spear-phishing campaign," Sullivan said.
Sign up for CIO Asia eNewsletters.