Definition : Phishing

Phishing is an online fraud technique that involves sending electronic messages (usually emails, but also text messages or social media messages) that appear to come from a reliable and legitimate source, with the intention of deceiving recipients into disclosing sensitive personal information, such as passwords, credit card numbers, bank account information, or other confidential data.

These phishing messages are often designed to create a sense of urgency or fear in the victim, prompting them to act quickly without questioning the authenticity of the message. For example, a phishing email may claim that the user's account has been compromised and ask the user to click on a link to reset their password. However, the link leads to a fraudulent website closely resembling the official site but designed to collect the user's entered information.

Key features of phishing include:

• Imitation of legitimate sources: Attackers often use logos, layouts, and language that mimic those of reputable companies or organizations to appear credible.
• Malicious links: Messages contain links to fraudulent or malicious websites designed to steal personal information or distribute malware.
• Infected attachments: Some phishing emails include attachments that, when opened, can install malware on the victim's computer.
• Psychological manipulation techniques: Attackers often use tactics such as urgency, fear, curiosity, or flattery to prompt victims to comply with their requests.

To protect against phishing, it is recommended to exercise caution when opening emails or messages from unknown sources, to verify the authenticity of requests for personal information by directly contacting the relevant organization through an official communication channel, to use computer security solutions, and to stay informed about the latest phishing tactics.