Before adding and sharing your Fraud Alert please check to see if a similar alert has already been posted, thank you:


What are phishing kits? Web components of phishing attacks … – CSO

Post a Fraud Alert:

Phishing is a social attack, directly related to social engineering. Commonly centered around email, criminals use phishing to obtain access or information. Phishing attacks can be basic or customized toward the victim and their organization.

A phishing attack with a directed focus is called spear phishing. If, for example, the criminal were targeting a group or person within a company, they’d use spear phishing to make the email look and feel legitimate. Usually this is done by using the victim’s correct name and title, referencing legitimate projects, known co-workers, or spoofing an email from a senior executive.

Vishing is the term given to phishing via telephone. Same goals, same emotional triggers, only instead of email the criminal calls the victim directly. Examples of common vishing attacks include IRS scams and tech support scams. In both cases, the criminals are hoping to get personal information and money.

No matter what type of phishing attack is launched, the goal is to get the victim to do  something, such as reveal usernames and passwords or share documents and other sensitive details.