(redirected from Spear phishing)
Also found in: Dictionary, Encyclopedia.
Related to Spear phishing: social engineering


The illegal practice of attempting to steal an identity by setting up a website and encouraging people to input credit card or other personal information. Phishing often purports to present a legitimate web business and asks the "customer" to give personal information in order to receive fictitious products. Alternatively, phishing may involve a criminal sending out e-mail purporting to be from a bank or credit card company asking for information as part of an "urgent" request. Phishers then steal the identity directly or sell to another party for illegal purposes.


Phishing is one way that identity thieves use the Internet to retrieve your personal information, such as passwords and account numbers.

The thieves' techniques include sending hoax emails claiming to originate from legitimate businesses and establishing phony websites designed to capture your personal information.

For example, you may receive an urgent email claiming to come from your bank and directing you to a website where you're asked to update or verify your account number or password. By responding you give identity thieves an opportunity to steal your confidential information.

Phishing is difficult to detect because the fraudulent emails and websites are often indistinguishable from legitimate ones and the perpetrators change identities regularly.

Mentioned in ?
References in periodicals archive ?
Attackers] merge data from multiple sources, building dossiers on potential victims, including spear phishing targets," he said.
Protect yourself by applying phishing and spear phishing security protocols associated with texting, including:
These spear phishing emails entitled 7th Pay Commission were first noticed on May 18, 2016.
Email spear phishing is similar, but the difference is that the attack is targeted toward a specific key person or group.
2 per cent) of targeted spear phishing attacks, as these companies have less stringent security parameters and can be used as a gateway to gain entry to larger, more lucrative companies in its "partner ecosystem.
The solution to spear phishing is to beef up your email security gateway with a multi-scanning solution that increases your protection against known and unknown threats and decreases vulnerability to malware that evades or disables specific anti-malware engines.
Spear phishing is an email that appears to be from an individual or business you know, but it is actually criminal hackers.
Considering that most companies deploy antispam and anti-virus solutions, why are these spear phishing attacks still so successful?
These malware typically spread through spear phishing mails having attachments as zipped archives or Microsoft Office document exploits or via removable drives.
Social engineering enables a fraudster to obtain the information needed to make spear phishing messages appear legitimate.
In 2013, the top industry that received spear phishing e-mails in KSA was finance, insurance and real estate (79 percent of all incoming e-mails were targeted), and large organizations sized 2501+ experienced the highest volume at 72 percent.
Results showed both mass campaign phishing and spear phishing are still rampant in the attack strategies used by cybercriminals around the world.