Phishing
Phishing is a type of cyberattack where attackers try to trick people into sharing sensitive information, such as passwords, credit card numbers, or login details. It usually looks like a legitimate message from a trusted source.
How it works
Phishing attacks often arrive as emails, messages, or fake websites. The attacker pretends to be a bank, company, or online service and asks the user to click a link or enter personal data.
Once the information is entered, it goes directly to the attacker.
Common phishing targets
Phishing commonly targets:
- email accounts
- social media profiles
- online banking
- work and company accounts
Attackers rely on urgency and fear to push quick actions.
Types of phishing
Some common forms include:
Email phishing — fake emails with links or attachments
Spear phishing — targeted attacks on specific people
- Smishing — phishing via SMS messages
- Fake websites — copies of real login pages
How to recognize phishing
Warning signs may include:
- urgent or threatening language
- strange sender addresses
- spelling or grammar mistakes
- links that do not match the real website
How to stay protected
To avoid phishing:
- never click suspicious links
- check website URLs carefully
- do not share sensitive data via email
- use two-factor authentication
Simple example
Phishing is like a fake letter that looks like it came from your bank, asking you to confirm your password.
Related terms
- What is HTTPS?
- What is Two-Factor Authentication?
- What is Social Engineering?
Source
Information simplified from the Wikipedia article “Phishing”.