Phishing is an attempt to acquire personal or sensitive information by masquerading as a trustworthy entity in electronic communications. Attackers often use emails, messages, or websites that appear legitimate to deceive victims.
Key Characteristics:
- Use of urgent language to prompt immediate action.
- Requests for sensitive information, such as passwords or credit card numbers.
- Spoofed email addresses or websites that mimic real organisations.
Types of Phishing:
- Email Phishing: Deceptive emails that encourage users to click on malicious links or attachments.
- Spear Phishing: Targeted attacks aimed at specific individuals or organisations.
- Whaling: High-profile phishing attacks targeting senior executives or important figures within an organisation.
To Protect Against Phishing:
- Be cautious with unsolicited emails or messages.
- Verify sender identities before providing information.
- Use security features like two-factor authentication.
Awareness and education are critical in preventing successful phishing attacks.