A phishing-testing-campaign is an email scam designed to steal personal information from victims. Criminals use phishing, the fraudulent attempt to obtain sensitive information such as credit card details and login credentials, by disguising as a trustworthy organization or reputable person in an email communication.
Typically, a phishing-testing-campaign is carried out by email spoofing; an email directs the recipient to enter personal information at a fake website that looks identical to the legitimate site. Phishing emails are also used to distribute malware and spyware though links or attachments that can steal information and perform other malicious tasks. Often Phishing attacks are used to distribute Ransomware and hold data for ransom.
Phishing is popular with cybercriminals because it enables them to steal sensitive financial and personal information without having to break through the security defenses of a computer or network. Public awareness about phishing campaigns has grown considerably in recent years, as many incidents have been covered by a variety of media sources. In addition to technical solutions, user security awareness is one of the cyber security measures being used to help counter attempted phishing incidents.
To fight spear-phishing scams, employees need to be aware of the threats,
such as the possibility of bogus emails landing in their inbox. Besides
education, technology that focuses on email security is necessary.
Security-Taskforce can help to test how your organisation reacts to Phishing emails and help to educate employees. Fight together phishing and Ransomware attacks.