According to a report by FireEye, one in every 101 emails is malicious. Phishing is a type of cyberattack that uses email to trick recipients into believing the message is genuine, and encourages them to either download a malicious attachment or to share valuable personal information, such as financial information, social security numbers, or login credentials.
Spear phishing targets specific individuals within an organization. This approach requires thorough research of the victims. Often, attackers will target victims whose personal information is available on the internet. By accessing victims' social networking profiles, attackers can track down targets' email addresses, job titles, and where they work. Using these details, attackers can send a convincing but fraudulent message to their targets.
Pharming occurs when hackers redirect users to a fake site that's almost identical to a legitimate site. After the user accesses the fake site, criminals then prompt them to provide sensitive information, such as passwords, social security numbers, and account numbers.
In this type of attack, users receive an email stating that they won a lottery or sweepstake. Then users are prompted to provide bank account details along with personal details to prove their identity. Hackers use these details to steal money from the victim's bank account.
During this scam, an attacker pretends to be the CEO of a company and then sends an email requesting the victim to provide personal or bank details. Since the email appears to be sent from the CEO, employees are quick to complying with the demands and often don't realize their mistake until it's too late.
A common example of this scam is the "Nigerian prince" email scam where the user requests help smuggling wealth out of Nigeria. The scammer promises to pay the victim for their help once the deed is done. This scam requires the victims to send their bank details and a processing fee in advance.
To protect yourself from falling victim to a phishing scam, it's important to be cautious with your personal and financial information. Here are some pointers to avoid falling for a scam:
Subscribe to our digest to get your weekly dose of cyber security updates straight to your inbox.
© 2019 Zoho Corporation Pvt. Ltd. All rights reserved.