Blog Menu

Spear Phishing

March 13, 2016

Filed under: Internet,legal,life — Terry Wohlers @ 08:11

Phishing is the use of email to capture usernames, passwords, credit card or bank details, and other information, for malicious reasons. The email gives the appearance that it’s from a person or organization you know, hoping that you will click a link in the email or open an attachment. You have probably received one or more of these emails, so I hope you have not fallen victim to any of them.

cyber

Spear phishing is similar, but takes the concept to another level. The email may open up by saying, “Terry, I’m sorry I missed you at last week’s event in Los Angeles. I wanted to show you the following,” with a link waiting for you to click. Alternatively, it might ask you to open an attached file. The email may include other personal details, leading you to believe it is person in your field or a friend. Due to this personalization, a percentage of people will fall for the trick and click on the link or open the file. The consequences can be dire.

My advice is to question all emails. If you receive an unexpected email like the one above, reply with a question that a stranger could not answer. For example, say, “I want to validate the authenticity of your email, so can you say what I was wearing that day?” Whatever you choose to ask, make it impossible to answer, unless the person is genuine. The bottom line: be careful because phishing and spear phishing can cause significant damage.