A Dangerous and Insidious Attack:
Basic Facts About Phishing |
A common type of malicious attack that anyone can fall victim to - this is how
phishing can be defined. It is classically described as a form of Internet fraud to
obtain confidential information. Most often, cybercriminals use phishing to extract
account passwords and bank card details.
The word "phishing" is borrowed from the English language. In the original, it is
spelled "phishing", combining two other words: " phony" (deception) and "fishing "
(fishing). Indeed, this attack is a lot like fishing.
The attacker (fisherman) sends the user (fish) an email with a fake link to a resource
he is familiar with (a hook with a spoon). The user follows the link, enters their data
on a fake page, but in the end, they are sent to cybercriminals. In order for the
"catch" to be as large as possible, crackers "fish" in "cool" places, pretending to be
representatives of popular sites: social networks, banks, well-known services.
As a rule, in the text of a phishing email, criminals intimidate recipients by following a
link as soon as possible and entering a password or information from a card.
Otherwise, something terrible can supposedly happen - for example, deleting an
account or blocking a bank account. As a result, the user does not have time to
understand the situation and clicks on the link, unaware of the consequences.
Using the received password, an attacker can penetrate the victim's account on a
particular site, and then see whether to save or delete everything that is stored there.
Or he can use this account to commit new cybercrimes. And if we are talking about
phishing emails on behalf of banks, then everything can end up with illegal
withdrawals of funds from the account.
An example of a phishing email
Phishers disguise themselves very well and produce high-quality fake letters. They
use company logos and links to pages from these sites. Therefore, the recipient may
not notice that they are