The word “phishing” originally came from the analogy of early Internet

               criminals using email lures to “fish” for passwords and financial data
               from a large sea of unsuspecting Internet users








                   •  Types of phishing


               ➢ Email phishing –

                           ✓ Messages are delivered by email, and are not personalized
                              or targeted to a specific individual or company.

                           ✓ This is termed "bulk" phishing.


               ➢ Spear Phishing–

                    ✓ Spear phishing targets specific individuals instead of a wide group

                       of people.
                    ✓ Attackers often research their victims on social media and other

                       sites.
                    ✓ That way, they can customize their communications and appear

                       more authentic.

                    ✓ The first step used to penetrate a company’s defences and
                       carryout a targeted attack

               ➢ Whaling and CEO fraud -

                   ✓ Crafting of spoofed emails purportedly from senior executives
                       with the intention of getting other employees at an organization

                       to perform a specific action, usually the wiring of money to an

                       offshore account.


               ➢ Clone phishing -