RA2204: Make Sure Email Message Is Phishing
Summary
| ID | RA2204 |
|---|---|
| Brief Description | Make sure that an email message is a phishing attack |
| Author | @atc_project |
| Creation Date | 2019/01/31 |
| References | |
| Response Stage | Identification |
Description
Check an email and its metadata for evidences of phishing attack:
- Impersonalisation attempts: sender is trying to identify himself as somebody he is not
- Suspicious askings or offers: download "invoice", click on link with something important etc
- Psychological manipulations: invoking a sense of urgency or fear is a common phishing tactic
- Spelling mistakes: legitimate messages usually don't have spelling mistakes or poor grammar
Explore references of the article to make yourself familiar with phishing attacks history and examples.