Phishing refers to a variety of attacks that are intended to convince you to forfeit sensitive data to an imposter. These attacks can take a number of different forms; from spear-phishing (which targets a specific individual within an organization), to whaling (which goes one step further and targets senior executives or leaders). Furthermore, phishing attacks take place over multiple channels or even across channels; from the more traditional email-based attacks to those using voice – vishing – to those coming via text message – smishing. Regardless of the type or channel, the intent of the attack is the same – to exploit human nature to gain control of sensitive information (citation 1). These attacks typically make use of several techniques including impersonated websites, attacker-in-the-middle, and relay or replay to achieve their desired outcome.


More

Gov Info Security: UK Government to Roll Out Passkeys Late This Year

FIDO-Based Authentication to Replace SMS-Based Verification, Says UK NCSC The U.K. government is set to…

Read More →

NCSC: UK pioneering global move away from passwords

The UK government is set to roll out passkey technology for its digital services later…

Read More →

ID Tech Wire: FIDO Alliance Launches Payment Authentication Working Group

The FIDO Alliance announced today the launch of a new Payments Working Group (PWG) focused on developing and implementing…

Read More →