Phishing refers to a variety of attacks that are intended to convince you to forfeit sensitive data to an imposter. These attacks can take a number of different forms; from spear-phishing (which targets a specific individual within an organization), to whaling (which goes one step further and targets senior executives or leaders). Furthermore, phishing attacks take place over multiple channels or even across channels; from the more traditional email-based attacks to those using voice – vishing – to those coming via text message – smishing. Regardless of the type or channel, the intent of the attack is the same – to exploit human nature to gain control of sensitive information (citation 1). These attacks typically make use of several techniques including impersonated websites, attacker-in-the-middle, and relay or replay to achieve their desired outcome.
-
About The AllianceAlliance MembershipSpecifications
-
FIDO User Authentication
-
FIDO Device Onboard
-
FIDO CertificationsFind Certified ProductsFIDO Accredited LaboratoriesAdministrative
-
Discover FIDO
-
Latest Updates
More FIDO in the News
MobileIDWorld: Google Chrome Enhances Security with Mandatory Biometric Authentication for Password Autofill
Google has implemented significant enhancements to biometric authentication and security features in Chrome and Google…
9to5Mac: Apple @ Work: Passkey portability is finally here in iOS 26 and macOS Tahoe 26
With iOS 26 and macOS Tahoe 26, Apple is solving a key problem, though For…
Reddit Implements Mandatory ID Verification for UK Users Under Online Safety Act
Reddit has implemented mandatory age verification for UK users to comply with the country’s Online…
Subscribe to the FIDO newsletter
Stay Connected, Stay Engaged
Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.
"*" indicates required fields
