Categories: Threat Insight

Email Phishing

What is phishing?

Phishing is a scam where psychological manipulation is used to scare or trick victims into giving away sensitive data like passwords or paying money through the use of fraudulent invoices.

What types of phishing are there?

Spear phishing – These are emails that are targeted at individuals. Typically

Whaling/business email compromise – this involves targeting upper management, usually c-level, into releasing sensitive information or making fraudulent payments.

What does whaling look like?

Clone phishing – in these attempts, a previously delivered legitimate email that contains an attachment or link has its content taken and replaced into an email

General phishing –

How do I spot phishing scams?

Grammar – since the majority of phishing email creators are not native English speakers, they tend to make mistakes in their writing. Words will be misspelled, formatting such as spacing may be off and the usage of words may not sound normal. These are all major tell tale signs that the email you are viewing is not legitimate.

Impersonal – Since the sender often does not know much about the recipient, the email

Email Header –

Asking for a quick reply –

See our blog post on how to spot phishing emails –

How do I stop phishing scams from succeeding in my organization?

Advanced email security – The best course of action is to have email security in place that will block the vast majority of phishing attempts.

Security awareness training – For when phishing emails do get past your prevention systems, you need users that are knowledgeable and vigilant.

Ron Samson

Recent Posts

Top 5 Benefits of Managed Endpoint Detection and Response for Businesses

In today's digital landscape, businesses face an increasing number of sophisticated cyber threats. To combat…

3 weeks ago

SIEM Data Retention Best Practices for Effective Threat Detection

Security Information and Event Management (SIEM) systems play a crucial role in modern cybersecurity strategies.…

4 weeks ago

Cloud SIEM Solutions: A Complete Guide to Streamlined Threat Detection

In today's digital landscape, organizations face an ever-increasing number of cyber threats. To combat these…

4 weeks ago

Endpoint Detection and Response vs Antivirus: Key Differences

In the world of cybersecurity, protecting endpoints - such as computers, laptops, and mobile devices…

4 weeks ago

Explaining What Is EDR in Cyber Security and Its Key Benefits

In the ever-changing world of cyber threats, organizations need robust tools to protect their digital…

1 month ago

How a Cyber Security SOC Analyst Responds to Real-Time Threats

In the realm of cybersecurity, the role of a SOC (Security Operations Center) analyst is…

1 month ago