What Is Phishing? |
The U.S. Computer Emergency Readiness Team defines phishing as:
Phishing is an attempt by an individual or group to solicit personal information from unsuspecting users by employing social engineering techniques. Phishing emails are crafted to appear as if they have been sent from a legitimate organization or known individual. These emails often attempt to entice users to click on a link that will take the user to a fraudulent website that appears legitimate. The user then may be asked to provide personal information, such as account usernames and passwords, that can further expose them to future compromises. Additionally, these fraudulent websites may contain malicious code. The media, as well as other private groups and individuals have also cautioned the public about phishing. Myriad examples are available online. Here are a few for your reference: Beware This Online Shopping Scam: Fake Order Confirmations http://www.pcworld.com/article/2856254/beware-this-online-shopping-scam-fake-order-confirmations.html New Scam Emails Fake Online Order Confirmations to Shoppers http://ctwatchdog.com/finance/new-scam-emails-fake-online-order-confirmations-to-shoppers Fake Amazon “Shipping Confirmation” Emails Lure Users to Compromised Sites http://news.softpedia.com/news/Fake-Amazon-Shipping-Confirmation-Emails-Lure-Users-to-Compromised-Sites-281100.shtml https://www.us-cert.gov/report-phishing |