{"id":9555,"date":"2016-02-05T10:00:06","date_gmt":"2016-02-05T08:00:06","guid":{"rendered":"http:\/\/blogs.sun.ac.za\/it\/?p=9555"},"modified":"2016-02-05T10:44:03","modified_gmt":"2016-02-05T08:44:03","slug":"spear-phishing","status":"publish","type":"post","link":"https:\/\/blogs.sun.ac.za\/it\/2016\/02\/spear-phishing\/","title":{"rendered":"[:en]Phishing and whaling[:af]Phishing en whaling[:]"},"content":{"rendered":"

[:en]<\/p>\n

Recently we gave you some pointers on identifying phishing<\/a>\u00a0e-mails. So now that you know all the signs and how to outwit the criminals,\u00a0there’s another variant – spear phishing. But don’t panic, it’s almost the same, with a bit of a twist.<\/p>\n

Spear phishing<\/b> is an e-mail that seems to be sent from an individual or business you know. Of course it’s really from hackers attempting to obtain you credit card, bank account numbers, passwords and financial information.<\/p>\n

These types of attacks focus on a single user or department within an organisation and use another staff member from the organisation’s name to gain the victim’s trust. (Also see our recent article on the incident at Finance<\/a>.)<\/p>\n

They often appear to be from your company’s human resources or IT department, requesting\u00a0staff to update information, for example passwords or account details. Alternatively the e-mail might contain a link, which will execute spyware when clicked on.<\/p>\n<\/p>\n

But wait, there are even more fishing comparisons.<\/p>\n

\n
\n
\n

When a phishing attack is directed specifically at senior executives, other high profile staff or seemingly wealthy people, it’s called whaling<\/em>. By whaling cyber criminals are trying to catch the “big phish”, or whale.<\/p>\n

\"phishing\"<\/a><\/p>\n

[SOURCE: http:\/\/www.webopedia.com]<\/p>\n<\/div>\n<\/div>\n

\n
\n
\u00a0<\/div>\n
\u00a0<\/div>\n
\u00a0<\/div>\n
\u00a0<\/div>\n<\/div>\n<\/div>\n<\/div>\n

[:af]<\/p>\n

Ons het onlangs vir jou `n paar wenke gegee hoe om `n phishing<\/em><\/a>\u00a0e-pos uit te ken. So noudat jy gereed is om enige krimineel uit te oorl\u00ea, het ons vir jou nog `n weergawe van phishing<\/em> – spear phishing<\/em>. Maar moenie paniekbevange raak nie. Dis amper dieselfde, net \u0149\u00a0bietjie anders.\u00a0<\/p>\n

Spear phishing<\/em><\/strong> is wanneer \u0149\u00a0e-pos lyk of dit gestuur is vanaf \u0149\u00a0individu of besigheid wat jy ken. Inderwaarheid kom dit van kuberkrakers wat probeer om jou kredietkaart, bankrekening, wagwoord en finansi\u00eble inligting te aas.<\/p>\n

Hierdie tipe aanvalle fokus op \u0149\u00a0enkele gebruiker of departement binne `n organisasie. Deur die e-pos te stuur vanaf iemand binne die organisasie se e-pos, word jou vertroue gewen en gee hy makliker die inligting. (Sien ook ons berig oor die onlangse insident by \u00a0Finansies<\/a>)<\/p>\n

Die e-posse lyk dikwels asof dit gestuur word deur jou\u00a0menslike hulpbronne of IT-afdeling en versoek gewoonlik dat personeel hulle inligting (byvoorbeeld wagwoorde of rekeninginligting ) opdateer of heraktiveer. Alternatiewelik bevat die e-pos \u0149\u00a0skakel wat spyware\u00a0<\/em>aktiveer indien daarop gekliek word.\u00a0<\/p>\n

 <\/p>\n<\/p>\n

Maar dis nie al nie – daar is selfs nog meer visvang-analogie\u00eb.<\/p>\n

Wanneer `n phishing<\/em>-aanval direk geloods word op senior uitvoerende hoofde, ho\u00eb-profiel personeel of skynbaar finansie\u00ebl welaf persone, word dit whaling<\/em> genoem. Deur whaling<\/em> probeer kuberkrakers een\u00a0“big phish”, of te wel die walvis, vang.<\/p>\n

\"phishing\"<\/a><\/p>\n

\n
\n
\u00a0<\/div>\n
[BRON:\u00a0http:\/\/www.webopedia.com]<\/div>\n<\/div>\n<\/div>\n

[:]<\/p>\n","protected":false},"excerpt":{"rendered":"

[:en] Recently we gave you some pointers on identifying phishing\u00a0e-mails. So now that you know all the signs and how to outwit the criminals,\u00a0there’s another variant – spear phishing. But don’t panic, it’s almost the same, with a bit of a twist. Spear phishing is an e-mail that seems to be sent from an individual […]<\/p>\n","protected":false},"author":259,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20382,49,29187],"tags":[20381,48692,48693],"class_list":["post-9555","post","type-post","status-publish","format-standard","hentry","category-email","category-general","category-security-2","tag-phishing","tag-spear-phishing","tag-whaling"],"publishpress_future_action":{"enabled":false,"date":"2026-05-22 04:59:19","action":"change-status","newStatus":"draft","terms":[],"taxonomy":"category","extraData":[]},"publishpress_future_workflow_manual_trigger":{"enabledWorkflows":[]},"_links":{"self":[{"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/posts\/9555","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/users\/259"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/comments?post=9555"}],"version-history":[{"count":37,"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/posts\/9555\/revisions"}],"predecessor-version":[{"id":9801,"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/posts\/9555\/revisions\/9801"}],"wp:attachment":[{"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/media?parent=9555"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/categories?post=9555"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.sun.ac.za\/it\/wp-json\/wp\/v2\/tags?post=9555"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}