What is?
Cyber-criminals use phishing (a form of social engineering) to gather credentials and other information about you to either attack your accounts or service provider. A spear phish attack is a sophisticated attack in which the bad actor researches your institution (in this case IÉSEG) and uses that information to imitate their communications and trick you into providing sensitive information.
Phishing Statistics:
- Phishing is the most prevalent social engineering tactic used against educational institutions
- 90+% of phishing attacks are used to steal credentials
To do:
❯ Don’t communicate sensitive information (like password) by email or phone
❯ Apply the following tips
Tips:
How to detect a Phishing Email ?
- Check the url of links contained in the email.
- Check email address of the sender.
- Emails demanding “immediate action” are probably scams.
- It is important to notice grammatical and stylistic errors.
- Impersonal greetings should be a red flag.
- Phishing emails sometimes include attached files with generic names.
Take Test
1. Let’s start with this email
Make sure to explore the e-mail and apply tips
2. Linkedin or phishing
3. We move on with this new message
Make sure to check the url
4. Our new collaboration tool?
Make sure to explore the e-mail et apply tips
5. A support ticket?
Make sure to check the url
6. A scan is waiting for you?
Make sure to explore the e-mail et apply tips
Think before you click!