Yaşar Ateş

System and Security Administration Manager02 August

What is phishing?

We take many measures to protect our tech infrastructure from cyber attacks. Besides, awareness level of our employees is at a significant point in cyber security. Because a remarkable amount of cyber attacks are done over employees of a company.

Kimlik Avı

What is ID phishing?

“ID phishing” is the most common kind of cyber attack. These attacks can be many different ways. But all have the only common purpose. Trying to capture your vulnerable information such as identity, credit card or username. Let’s get started to attacking kinds and definitions with phishing.

Phishing

How did I understood the phishing attack?

In these kind of attacks, the attacker pretends like a real company to capture your login information. Directs you to a fake web page to seize your account information by sending an e-mail. Subsequently it seized the information you entered, then directs you to a real page. The information that the attacker captured, enables it to harm you or the company you work for.

Spear

Spear

It’s a more complicated phishing attack that includes specified information which enables the attacker look like a legitimate source. It is targeted to make you click on the link or extension by using your name, phone number or company information.

Whaling

Whaling

It’s a popular method that enables you to transfer money to a hacker or send your vulnerable information through e-mail by pretending like a real company executive or a department. They look like an ordinary e-mail similar to Multinet (sistembilgi@abc.com.tr or sistembilgi@abc.com.tr like) from a senior executive or a department of a company and request your vulnerable information like (usernames and passwords)

Sharepoint Phishing

Sharepoint Document Phishing

You might receive an e-mail which looks like from a file sharing site like Sharepoint and notifies you that a document was shared. The link provides in these e-mails takes you to a fake entry page that pretends a real entry page and will steal your accounts ID information.

What should we do as a precaution for phishing attacks?

Please consider the warning warnings below to avoid the attacks we wrote above:

  • Do not click on the links and extensions that are from unknown mail addresses. Especially be careful to .zip, other compressed or .exe file types.
  • Do not reply to e-mails request your personal information.
  • Be careful against to e-mail addresses that use suspicious or misleading names.
  • Examine the URL’s sent carefully to make sure they are correct.
  • Do not give your personal information to suspicious or unknown websites.
  • Do not try to open a document that you don’t expect to receive.
  • Be careful while you open an extension or clicking links, if you received a warning e-mail that indicates it is from an out source.
INVENTIV BLOG

Related Articles

Securvent

Mobile Phishing Attacks Targeting the Financial Industry Has Increased by 125% in 2020

Daha Fazla
Securvent

Attackers Imitate WhatsApp Voice Message Warnings to Steal Information

Researchers have discovered that attackers imitate message notifications that comes from WhatsApp of a malicious phishing attack that uses a legitimate domain to spread out a malware who steals…

Daha Fazla
Securvent

Which Programs To Use For Data Security?

Every computer you have in your house or work should have an antivirus program. Event though the effectiveness of the antivirus programs is debated, this should be thought as a simple hygiene rule.

Daha Fazla
Securvent

5 Simple Methods to Provide Data Security on Your Business

The answer to the question of what is data safety in institutions and we have compiled 5 different methods that you need to apply for 5 different methods for you.

Daha Fazla
Securvent

Conti Malicious Software Activities Is Increasing

Daha Fazla
Securvent

What Is Cyber Security?

We will briefly explain what happened from the eyes of the expert related to cyber security.

Daha Fazla
Securvent

What Is Penetration Test?

What is an infiltration test, penetration test, pentest? Why do we need infiltration tests? How often should you have the penetration test for the safety of your systems, software and sensitive…

Daha Fazla
Securvent

What is KVKK? Things to know about KVKK (Episode-1)

KVKK means the law of protection of personal data. What is KVKK, when it came into force, the purpose and scope of the law is the answer to the questions you can find in this content.

Daha Fazla
Securvent

Why We Should Perform Penetration Tests with Different Firms?

The most frequently mentioned reason in the change of the companies that perform penetration tests is to give a “new perspective to the test.

Daha Fazla
Securvent

What is KVKK? Things to know about KVKK (Episode-2)

In the 2nd part of our article, you can access the details of the purpose, scope and law of KVKK.

Daha Fazla
Securvent

Working From Home and Cyber Security Precautions

Even years later, when it comes to 2020, everyone will think of Covid-19 or Corona virus, which we all know.

Daha Fazla
Securvent

Trust Stamp Obligation on E-Commerce Sites

The trust stamp clearly indicates the existence of a “minimum security and service quality standard”. The Trust Stamp is described as “The electronic sign given to the service provider and…

Daha Fazla
Securvent

IOT and Cyber Security

Daha Fazla
Securvent

What Is Data Security?

Thera are thousands of cyber attack methods that would cause losing all of your datas or some of them, which are the most valuable assets of your organization. By this reason providing the data…

Daha Fazla
Securvent

What to Consider When Choosing Penetration Test Firm?

Experience and ability are the indispensable of a penetration test. Specialists who will perform the penetration test should be talented, have the deep knowledge of the sector and all required…

Daha Fazla
Securvent

Ransomware : To Pay or Not ?

The face of the disaster has changed. Ransomware cyber attacks have become a threat that is increasingly common for the small and medium scale merchants. Schulze and James R. Slaby, explain that why…

Daha Fazla
Securvent

How To Adapt to KVKK?

With the KVKK Law, it has been made compulsory to protect all information technology systems containing personal data against any unauthorized access threats that may come over the internet.

Daha Fazla
Securvent

RxSwift and Reactive Programming

Daha Fazla
Securvent

Cybersecurity Trends and Emerging Threats in 2021

2021 is finally here and it brings a more bright future along with however we have long way to go. In this episode, we will review the five cybersecurity threats that creates prominent potential risk…

Daha Fazla

SEE ALL