Cyber and Technology Risk Management Forum, Park City, UT

PHISHING LURE CLUES

‰ The target’s brand, name and/or domain is spoofed in the email. ‰ The hyperlink in the lure email is obfuscating the real link destination. ‰ Generic recipient used (Dear, Sir, etc.). ‰ No signature is included or the signature is generic and includes no contact details. ‰ Includes misspellings or grammatical mistakes. ‰ The tone of the email triggers an emotion like fear, urgency or interpersonal connection. ‰ The sender’s email address looks legitimate, but the Reply To address goes somewhere else.

© Copyright 2018 Cofense™ All rights reserved.

PHISH

© Copyright 2018 Cofense™ All rights reserved.