Phishing is a form of social engineering. Phishing attacks use email or malicious websites to solicit personal information by posing as a trustworthy organization. For example, an attacker may send email seemingly from a reputable credit card company or financial institution that requests account information, often suggesting that there is a problem. When users respond with the requested information, attackers can use it to gain access to the accounts.
Phishing attacks may also appear to come from other types of organizations, such as charities. Attackers often take advantage of current events and certain times of the year, such as
E-mail spoofers are commonly trying to get the following information:
Things to know and remember when opening ANY e-mail that is asking you to provide information:
Phishing attacks hijack the brand of established organizations. The user believes they are ordering legitimate products, applying for a legitimate mortgage, retrieving electronic greeting cards or conducting some other real business transaction. Here are some of the most commonly spoofed brands and links to their phishing information pages: