The Evolution of Phishing

Online crime has been around for as long as the internet has existed. The anonymity of the online world provides a perfect space for cybercriminals to thrive and target unsuspecting victims.

Phishing is just one of the many different types of online scams and it can have devastating consequences. Victims often don’t realise that they have been robbed of both money and personal information until it is far too late.

As with all online scams, your best defence against a phisher is a healthy dose of knowledge (coupled with strong antivirus software), so read on to discover everything you need to know about phishing.

What is phishing?

Phishing is a prevalent form of cyber attack in which a hacker impersonates a trusted organisation to steal personal information. The term arose from the analogy of a cybercriminal looking to lure in unsuspecting victims, as a fisherman does with fish. But why the ph? The earliest phone hackers were known as ‘phreakers’ (or phone freakers), which is where the spelling of the word ‘phishing’ originates.

This type of scam arose in the 1990s. At this time, AOL was one of the only American online service providers and millions of people accessed their emails, web message services, and browsers through this server. A group of hackers, impersonating AOL employees, targeted users and tricked them into handing over their login credentials in what is now recognised as the first ever phishing attack.

From here, phishing evolved to resemble the types of attacks that we can recognise today. Cybercriminals realised they could purchase domain names for websites that closely resembled trusted e-commerce sites, such as Ebay and PayPal. By sending out cleverly crafted emails to unsuspecting customers, they could trick them into handing over credit card details and other personal information that could be used to perpetrate identity theft.

Today, phishing is one of the main strategies employed by cybercriminals. Australians lost an estimated $2 million to phishing attacks in 2020. 

How can I spot a phishing attack?

Up until now, phishing attacks have been fairly easy to identify. Online criminals often don’t put a lot of effort into their phishing schemes, sending out poorly designed emails that are riddled with spelling mistakes. They are hoping that quantity will trump quality and that amongst the thousands of potential victims, one or two will fall for their tactics.

If you receive an email, text message or phone call from a company requesting your personal information (name, date of birth, address, and financial details), you should immediately be suspicious. Your bank, social media platforms, and other types of businesses will never ask you for this information.

Other classic warning signs of a phishing attack include:

Unfortunately, phishers are constantly evolving. It was recently reported that a group of online criminals have developed a phishing ‘ToolKit’ that has the ability to change logos and text in real time.

ToolKit’s ability to personalise pages has seen it replicate the login sites for hundreds of popular sites including Adobe Document Cloud, OneDrive, and Office 365. Victims who receive this phishing email are asked to click on a link and are taken to a fake login page. The personalisation capabilities of ToolKit means that the victim’s email address is already filled in, giving the sense that they have visited the site before. They then enter their password and effectively hand over all their personal information. 

These types of new strategies suggest that identifying phishing attacks may not remain an easy task for too much longer. 

Phishing prevention tactics

There are many strategies that you can employ to keep your private information safe from phishers. Consider the following:

 

Cybercriminals are unlikely to disappear any time soon. Protect yourself and those around you by engaging in safe internet practises and always remain on the lookout for the classic warning signs of a phishing attack.

Author Bio:

Bridget

Bridget is a writer and editor, currently living in Melbourne. She is a copywriter for Newpath Web and loves working with words of all shapes and sizes. When not playing around with punctuation and grammar, she enjoys travelling and curating her Spotify playlists.

Exit mobile version