Attacks
Phishing
What is phishing?
Phishing is an attempt to obtain credentials or money through faked messages. The message poses as a known sender and creates time pressure.
In spear phishing the message targets one specific person and uses real details from their working life. In CEO fraud the sender poses as management and orders an urgent transfer, often while travelling or just before the end of the day.
Technical filters catch part of the traffic. The rest comes down to two things: two-factor login, which largely devalues a stolen password, and a fixed process that ties every payment approval to a second person and a second channel.
All terms in the knowledge base
Note: This entry reflects the state of knowledge to the best of our understanding and serves as general orientation. It is not legal advice. What counts is always the version currently in force at the responsible body, for example dsb.gv.at, nis.gv.at or enisa.europa.eu.
From the term to practice
Where does your business actually stand?
The IT Check reviews your IT across 8 audit areas with more than 100 individual checks and delivers documented findings with a prioritised action plan. From 1,299 € excl. VAT. The first call takes 20 minutes and carries no charge.