A Phishing email is an email meant to direct you to a fake website, tricking you to think it’s the official one.
How does it work?
As the name states, we are talking about a received email. Unlike any other email, this one’s target is to cause some damage. This being said, there are several types of Phishing emails; each one has different impact on their victims.
For instance, every phishing email aims at something. For example, some emails aim to steal your credentials; others trick you to download some infected software (Trojan). For further explanation of the above, let’s dig into some real examples.
So you are in the office, working on some exhausting task… Suddenly, you receive an email stating that you have won a huge amount of money!!! Well that’s great! You rush to open the email, and in order to win the prize, you will have to login to your Facebook account. So you click on the link, get redirected to Facebook, and insert your email and password. But surprisingly, you don’t get logged in… Why you ask? This is why:
BECAUSE, you didn’t pay attention to the link they redirected you to. Actually, it was not www.facebook.com (for example); it was maybe www.facebooks.com or www.faceibook.com followed by a huge link. So basically, you did not insert your credentials in the official Facebook page; you easily gave them to the hacker! Now he has full access on your personal account.
This is just one example of how a phishing email works. Another example is an email as an ad for a product you find interesting. The email has a link highlighted for you to click on it to take you to the official page of the product. When you click on the link, you are redirected to a page where it asks you to download the “Manual” of the product. As soon as you download the “Manual”, you realize that you have infected your PC with a virus.
These types of emails are very dangerous on both personal and corporate levels. On a personal level, as you have seen above, these scammed emails can hack your credentials easily. However, on a corporate level, you might be victim of a Ransomware attack.
Don’t rush to open emails with catchy subjects or content; and make sure to check who the sender is, because if the email address is a bit tricky, then the email is definitely a spam email.
On the other hand, if you felt the sender is a trusted one, and open a link, make sure it is an official one before inserting your credentials. For example if the page looks the same as Facebook, but the address is “www.facbook.com”, then don’t ever provide your personal username and password!
Now that you have learned that a Phishing email is an email meant to direct you to a fake website, then make sure to always double check before proceeding! Stay Safe!