Cyber Security Academy · Lesson

Phishing and Spear Phishing

Identify phishing emails, spear phishing, smishing, and vishing with real examples.

What is Phishing?

Phishing is a social engineering attack that uses deceptive emails, messages, or websites to trick targets into revealing credentials, installing malware, or transferring money.

It is the most common initial access vector in data breaches worldwide.

How Phishing Emails Are Constructed

Effective phishing emails include:

A spoofed or look-alike sender address
Urgency ("Your account will be suspended")
A malicious link pointing to a credential-harvesting site
Branding and logos of trusted organizations
Requests that bypass normal security thinking

All lessons in this course

Phishing and Spear Phishing
Malware: Viruses, Worms, Trojans, Ransomware
Man-in-the-Middle Attacks
Denial of Service and DDoS

← Back to Cyber Security Academy