Convincing Phish
Contents
Overview
Phishing is real and common threat. Through false pretense, the hacker attempts to coerce the victim into providing secure information.
Definition
## Tell-Tale signs
- It is an External email, noted in subject line.
- From an unknown, random email
- Commonly has misspellings or branding errors
- Links to random websites
In the above example, I (safely) clicked on the link and it resulted in
Notice the prompt looks exactly like the Microsoft branding. However, the “real” prompt for Microsoft credentials is always hosted on microsoftonline.com web
Back on the bad example, I entered incorrect credentials several times and it redirected me back to a legitimate site. This can help cover their trail of wrongdoing and confuses the user.
