Phishing messages are more common today than ever before. Since the start of the pandemic in 2020, Statistics Canada has estimated that more than one in three Canadians have received a phishing message. This type of cyber attack can come in many different forms. Here are the most common types of phishing scams to watch out for.
The Definition
Phishing is defined by the Government of Canada as an attempt by a third party to solicit confidential information belonging to an individual, group or organization by imitating or debunking a known brand name for financial gain. According to the Government of Canada, 1 in 99 emails is a phishing attempt and 1 in 25 branded product-related emails is a phishing attempt.
Phishing By Text Message
Text phishing is often a mass mailing using text messaging as a delivery tool. These phishing messages appear to come from a legitimate source, but are actually from cybercriminals trying to trick you into giving up your personal information or money.
Phishing
Spear phishing consists of designing a message aimed at a single person or a very small group, rather than a mass mailing. The approach is therefore much more targeted and uses information that seems to come from someone you know.
Whaling
Whaling, on the other hand, is aimed at the top management of a company or a person who holds a position of influence. It is a form of phishing where criminals impersonate the top management of an organization in order to obtain money, customer information or confidential identifiers. Cybercriminals target individuals who can afford to make large payments on behalf of a company, organization or government. The targets are, in most cases, employees, senior managers, suppliers as well as customers.
Spoofing
Spoofing is a tactic used by cybercriminals to disguise their malicious activities and make a message appear to come from a trusted source. It is done by using a fake website or phone number to trick someone into revealing their personal information.
In Short
We offer a corporate phishing awareness solution for employees. For more advice or if you have any questions, contact one of our corporate cybersecurity experts.