Phishing

-

According to the cyber security export, Phishing can be defined as the

"Phishing is a cyber crime in which a target or targets are contacted by email, telephone or text message by someone posing as a legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, banking and credit card details, and passwords.

Phishing is a tool used to grab others personal information,important data and credential to harm or take advantage.
The term "phishing" is said to have been coined by the well known spammer and hacker in the mid-90s, Khan C Smith.

The term “phishing” came about in the mid-1990s, when hackers began using fraudulent emails to “fish for” information from unsuspecting users.

There are some of the website which gives us facility to use phishing attack with out the knowledge of coding.We can use it, Some of the example of these websites are listed below:
  • Z-shadow (http://138.68.191.51/)
  •                                                                   Shadowwave
  •                                                                   libGen.io
  •                                                                   hackerearth.com 

    How to recognize the phishing attack:

    Successful phishing are difficult to identify from real. Usually, they try to appear as being from a company, even including official logos and other identifying data collected from the misrepresented company.

    However, there may have several clues that can indicate that a message you received is a phishing attempt. These include:

  • The message uses subdomains, misspelled URLs (typosquatting) or otherwise suspicious URLs.
  • The recipient uses a Gmail or other public email address rather than a corporate email address.
  • The message is written to invoke fear or a sense of urgency.
  • The message includes a request to verify personal information, such as financial details or a password.
  • The message is poorly written and has spelling and grammatical errors.
  • when you open the message it may see http (denotes not secure) rather than https (denotes quite secured)  in front of the link


source: https://www.phishing.org/what-is-phishing
Phishing is a crime so i suggest you to  take it only for educational purposes don't use it to harm someone else otherwise you will will commit cyber crime.
Hope you have understand about phishing.So, stay aware from phishing. Suggest friends and family member to be alert from phishing.

Comments

Post a Comment

Popular posts from this blog

Carding || (Full Course)

-
Image
Carding: I understand the fact that many people are ready to learn, but the available resource for them is the internet, but many of them get scammed and ripped in the journey, that’s why I have decided to drop The Definitive New(2020) Latest Carding Tutorial Guide. Carding is not something easy i must confess, you really need to devote your time to get success, So If you follow this tutorial carefully, I guarantee you that within a week of real practicing, you should be a pro carder. What is Carding? Carding is term described as a trick whereby products are being shopped/ordered from any online shops e.g Amazon, Jumia, FlipKart using Fake Cards(Credit/Debit). Who is a Carder ? A carder is referred to as a man who make uses of Hacked credit card details or buys credit cards from Credit card shops, or even pick up Credit Cards from Dumps Via Dark Web for the purpose of carding online shops. What You Will Need To Start Carding 1.Computer or Laptop 2.Socks (Compulsory, But some people do ...
Read more

XSS Powerful Methodology for Beginners

-
In this comprehensive post! You will learn the technique and concept of hunting XSS. No one will reveal his/her methodology of hunting bugs, because if everyone will we be following exact Steps of Hunting a particular bugs, Then after the passage of time, then the methodology will completely become useless. So, I will be sharing the core concept of hunting XSS, rather than telling you the exact Steps which I perform. So coming straight to point, let's start our discussion with the concept of XSS. For finding XSS, what we do ? 1. We try to find parameter (either GET based or POST based) 2. Filter those params, whose params value reflects on page. 3. Then we test simple xss payload i.e. <script>alert(1)</script> 4. If the parameter's value is reflecting but you are unable to execute simple xss payload due to WAF(Web Application Firewall) Then you try to bypass WAF, Such as if alert() function is a blocked keyword what if we try to execute this payload: <script>c...
Read more