| Titre | Assurez-vous que le message électronique est du phishing |
|---|---|
| ID | RA2204 |
| Description | Make sure that an email message is a phishing attack |
| Auteur | @atc_project |
| Creation Date | 31.01.2019 |
| Catégorie | |
| Étapes | RS0002: Identification |
| References | <ul><li>https://en.wikipedia.org/wiki/Phishing</li><li>http://www.phishing.org/phishing-examples</li></ul> |
Workflow
Check an email and its metadata for evidences of phishing attack:
- Impersonalisation attempts: sender is trying to identify himself as somebody he is not
- Suspicious askings or offers: download “invoice”, click on link with something important etc
- Psychological manipulations: invoking a sense of urgency or fear is a common phishing tactic
- Spelling mistakes: legitimate messages usually don’t have spelling mistakes or poor grammar
Explore references of the article to make yourself familiar with phishing attacks history and examples.