Beware of Phishing Scams

What is Phishing?
Phishing is an attempt by an individual or group to solicit personal information from unsuspecting 
users by employing social engineering techniques (i.e.,
manipulating people into performing actions or divulging confidential information).

Phishing emails are crafted to appear as if they were sent from a legitimate organization or known individual. 

These emails often attempt to attract users to click on a link that will take the user to a 
fraudulent website that appears legitimate.

The user then may be asked to provide personal information, such as account usernames and passwords that can further expose them, their network, 
and their unit to future compromises.

In order to fully understand phishing and how it can impact you and your unit, you should be aware 
that there are different types of phishing:

Phishing is usually an e-mail sent to a large group of people that attempts to scam the recipients. 
The people the message is sent to often do not have anything in common.

Spear phishing is a message sent to a smaller, more select group of targeted people or to a single 
individual.

Whaling or whale phishing is a highly personalized
message sent to senior executives, high-level officials ,or
their personal executive staff members.

Please review the attached brochure and keep it handy.

IMPORTANT:  Report Phishing Attacks to Your Local Information Assurance Officer and your servicing Network Enterprise Center (NEC)

 


Attachments: