Anatomy of a Phish

What is Phishing?

Phishing is a type of scam usually perpetrated by email (and sometimes phone), where the scammer "fishes" for information by tricking the victim into giving up sensitive information such as passwords and Social Security Numbers. Phishing is usually done in widespread mass emails but there is another form of phishing known as Spear Phishing. Spear Phishing is when the attacker heavily researches their target in order to craft a phony email that is more relevant to the target. Therefore, Spear Phishing is more dangerous because it can be harder to detect and the emails are more believable. Below is an infographic showing an example of a phishing email and some common things to look for when trying to determine if the message is legitimate or not.