Phishing: Difference between revisions

From GCA ACT

Jump to navigation Jump to search

Revision as of 05:42, 30 October 2023

Introduction

Phishing is a malicious Social Engineering technique used by cybercriminals to deceive individuals and organizations into revealing sensitive information, such as login credentials, financial data, or personal details. Phishing attacks often take the form of fraudulent emails, websites, or messages that appear to be from legitimate sources but are designed to trick recipients into taking harmful actions.

Phishing attacks are a common and serious threat to cybersecurity. These attacks exploit human psychology and trust in familiar brands or institutions to manipulate victims into divulging confidential information or performing actions that compromise their security.

Phishing can take various forms, including:

Email Phishing: Cybercriminals send deceptive emails that appear to be from reputable organizations, asking recipients to click on links, download attachments, or enter sensitive information.
Spear Phishing: Targeted phishing attacks aimed at specific individuals or organizations, often leveraging personal information to gain credibility.
Smishing (SMS Phishing): Phishing attacks conducted through text messages or SMS, often directing recipients to click on malicious links or respond with sensitive information.
Vishing (Voice Phishing): Cybercriminals use phone calls to impersonate trusted entities and manipulate victims into revealing confidential data.

Cybersecurity Tools

Akamai - Secure Internet Access Enterprise

Analyze - Intezer

AVG - AVG Antivirus Pro

Barracuda - Email Protection

Broadcom PhishMe

Cisco Talos Intelligence - Open Source Security Tools

Cybersecurity and Infrastructure Security Agency - Anti-Phishing Training Program Support

Federal Trade Comisson - OnGuard Online

Federal Trade Commission - Phishing

Federal Trade Commission Consumer Advice - How to Recognize and Avoid Phishing Scams

Global Cyber Alliance - Phishing Overview

Gophish - Open-Source Phishing Framework

Guardio - Guardio

Identity Guard - Identity Guard

James Brine Threat Intelligence Feeds

KnowBe4 - PhishER

KnowBe4 - PhishER Plus

Newly-Registered Domain Lists from Stamus Labs

NormShield Services

OpenPhish Feeds

Scam Advisor - Check a Website

Secureworks PhishInSuits

WSTNPHX Malware Email Addresses

Category Antivirus & Anti-malware Software not found

Security Awareness & Training

Australian Charities and Not-for-profits Commission - Governance Toolkit - Cyber Security

Barracuda - Email Protection

Broadcom KnowBe4

Broadcom PhishMe

Broadcom Security Awareness Training

Canadian Cyber Threat Exchange - CCTX - Cyber security for kids - How parents can talk with their children

Canadian Cyber Threat Exchange - CCTX - Cyber security for video game consoles

Canadian Cyber Threat Exchange - CCTX - Keeping your passwords secure has never been easier!

Canadian Cyber Threat Exchange - CCTX - Network cyber security - An introduction

Chainalysis - Crypto Mixers and AML Compliance

CISA - Cybersecurity Toolkit and Resources to Protect Elections

CISA Cybersecurity Publications

Consumer Reports - Spot Malicious Sites and Phishing Attempts

Consumer Reports - Stick to Official App Stores

CrowdStrike - CYBERSECURITY 101 - THE FUNDAMENTALS OF CYBERSECURITY

Crystal - Crystal School of Crypto Compliace and Investigators

Cyber Security Tools by SANS Instructors

Cybersecurity and Infrastructure Security Agency - Downloading and Installing CSET

Digital Transformation Hub - Best-Practice Cyber Security Governance

Digital Transformation Hub - Cyber Security - What it is and Why it Matters

Digital Transformation Hub - Making the Internet a Safe Place for All

Digital Transformation Hub - More Cyber Security Resources

Digital Transformation Hub - Why Cyber Security is so Important

FBI - Safe Online Surfing

Federal Trade Commission - Cybersecurity for Small Business

Federal Trade Commission - Physical Security

Federal Trade Commission Consumer Advice - Cybersecurity Resources for Non-Profits

Freedom of the Press Foundation - Your smartphone and you - A handbook to modern mobile maintenance

Global Cyber Alliance - 2FA

Global Cyber Alliance - Cybersecurity Toolkit for Elections

IDCARE - Apps & Tools

IDCARE - Apps - Tools

INFOGUARD Cybersecurity - Cybersecurity Tips for Journalists

International Center for Journalists - Strengthening Digital Security for Journalists and Civil Society Advocates in Latin America

Internetmatters - Guide to Apps

Internetmatters - My Family's Digital Toolkit

Internetmatters - Online Safety Leaflets & Resources

National Council of Nonprofits - Cybersecurity for Nonprofits

National Council of Nonprofits - Protect the Future of Your Nonprofits Data

National Cyber Security Centre - Cyber Security - Small Charity Guide

National Cybersecurity Alliance - Career + Education Library

National Cybersecurity Alliance - Online Safety - Privacy Basics- Resources & Guides

NetApp - Backup and Recovery

NetApp - What Is Backup and Recovery

NordVPN - What are scam websites, and how can you tell if a page is fake

PBS - Cyber Labs

Right To Be - Cybersecurity Resources

SecureTheVillage - Community Engagement Program

Secureworks PhishInSuits

Security First - Umbrella

Simplilearn - Cyber Security Full Course - Cyber Security Training for Beginners in 2022 - Simplilearn

SiteLock - Website Monitoring - Why It Is Important

Splunk Training

USCC - Cyber Quests

VPN Ratings - VPN

VPN Ratings - What is a VPN

VPN Ratings - What is a VPN?

Wipfli - Cybersecurity 101 - What does it Involve and What Should you Invest in

Wipfli - How CEOs can be Proactive in Cybersecurity

Wipfli - Investing in Cybersecurity Pays Dividends

Wipfli - Multifactor Authentication - Why you Need it Now

Motives

The motives behind phishing attacks can vary, but they often include:

Financial Gain: Phishers may aim to steal banking credentials, credit card numbers, or conduct fraudulent transactions.
Data Theft: Accessing sensitive data, such as corporate secrets or intellectual property, is a common objective.
Identity Theft: Phishers may seek personal information for identity theft, leading to fraudulent activities on victims' behalf.

Prevention and Mitigation

Preventing phishing attacks requires a combination of technical defenses and user awareness:

Technical Defenses

Email Filtering: Employing robust email filtering solutions to detect and quarantine phishing emails before they reach recipients' inboxes.
Multi-factor Authentication (MFA): Implementing MFA adds an extra layer of security, making it harder for attackers to gain unauthorized access.

User Awareness

Education and Training: Raising awareness and providing training to help individuals recognize phishing attempts and understand safe online practices.
Suspicion and Vigilance: Encouraging users to be cautious and verify the authenticity of emails or messages, especially those requesting sensitive information or urgent actions.

Notable Incidents

Several high-profile phishing incidents have had significant consequences, including data breaches, financial losses, and reputational damage:

Ubiquity Network social engineering attack (2015) - Scammers impersonated a senior member of Ubiquity Network, and an employee fell prey to the scam resulting in a loss of $46.7 million.
Ukrainian power grid attack (2015) - The attackers sent a phishing email to employees of Kyivoblenergo, a Ukrainian electricity distribution company, containing a malicious attachment that gave the attackers access to the company's network; this caused a blackout affecting 225,000 customers.
Sony Pictures hack (2014) - The attackers sent a phishing email to employees of Sony Pictures Entertainment containing a malicious link that when clicked, installed malware that gave the attackers access to Sony Pictures' network, allowing them to steal sensitive data, including unreleased movies and employee information.
Target data breach (2013) - The attackers gained access to Target's network by sending phishing emails to employees of a third-party vendor through malicious links that installed malware. This allowed the attackers to steal credit and debit card information from over 40 million customers.
RSA hack (2011) - The attackers send a phishing email to an employee of RSA containing a malicious link, which, when clicked, installed malware that gave the attackers access to RSA's network, allowing them to steal two-factor authentication tokens that could be used to access a wide range of systems and networks.

Conclusion

Retrieved from ‘https://act.globalcyberalliance.org/index.php?title=Phishing&oldid=6986’

Navigation menu