(redirected from Spear phishing)
Also found in: Dictionary, Encyclopedia.
Related to Spear phishing: social engineering


The illegal practice of attempting to steal an identity by setting up a website and encouraging people to input credit card or other personal information. Phishing often purports to present a legitimate web business and asks the "customer" to give personal information in order to receive fictitious products. Alternatively, phishing may involve a criminal sending out e-mail purporting to be from a bank or credit card company asking for information as part of an "urgent" request. Phishers then steal the identity directly or sell to another party for illegal purposes.
Farlex Financial Dictionary. © 2012 Farlex, Inc. All Rights Reserved


Phishing is one way that identity thieves use the Internet to retrieve your personal information, such as passwords and account numbers.

The thieves' techniques include sending hoax emails claiming to originate from legitimate businesses and establishing phony websites designed to capture your personal information.

For example, you may receive an urgent email claiming to come from your bank and directing you to a website where you're asked to update or verify your account number or password. By responding you give identity thieves an opportunity to steal your confidential information.

Phishing is difficult to detect because the fraudulent emails and websites are often indistinguishable from legitimate ones and the perpetrators change identities regularly.

Dictionary of Financial Terms. Copyright © 2008 Lightbulb Press, Inc. All Rights Reserved.
Mentioned in ?
References in periodicals archive ?
Ingressum is an innovative provider of cybercrime protection and intelligence services that proactively responds against online threats and reduces the risks posed by spear phishing, email domain spoofing, malware, and other cyber-attacks.
It provides immediate protection for cloud application users by automatically eliminating social engineering threats - spear phishing, phishing, and business email scams.
In a spear phishing attack, victims are tricked into clicking on something -- a web link or an e-mail attachment -- that allows hackers to surreptitiously connect to their systems, allowing them a foothold they can exploit to laterally move throughout the network until they find useful information.
Spear phishing: Attackers send an email that prompts users to follow a link to reset their Office 365 credentials.
Targeted spear phishing attacks present much more of a threat, as they often pick just one or a few targets and come armed with intimate information about a potential victim.
A new scam known as "smishing" is similar in many ways to phishing and spear phishing, but instead of sending deceptive emails, "smishers" use text messaging to trick recipients into responding with personally identifiable information (PII).
Achieved by the use of reconnaissance to make messages appear more genuine, spear phishing attacks masquerade as a legitimate individual or institution and co-opt their established trust to coerce the target into providing credentials to the attacker.
F-Secure said that the malware was spread 'via carefully crafted spear phishing emails that contain industry-specific terms relevant to each of the targeted organizations, indicating the emails were deliberately designed with the exact targets in mind.
Topics of the 24 papers include ISIS discourse in radical Islamic online news media in Indonesia, Singapore case studies of radicalization, Western female migrants to ISIS, social media analytics for intelligence, linguistic marker detection, and spear phishing. ([umlaut] Ringgold, Inc., Portland, OR)
India, June 6 -- A Pakistan based cyber attack group has been trying to exploit Indian government data by sending spear phishing emails to the government employees, as per a Fireeye blog.
Email phishing and spear phishing are quickly becoming more sophisticated, and more targeted, than ever before.
According to the SANS Institute, 95% of enterprise data breaches start with a spear phishing attack.