SOLVED: What is Smishing, Phishing and Social Engineering?

Published by Ian Matthews on

What is Smishing?

Smishing is a phishing message sent via text. The word Smishing is the combination of the words SMS (aka texting) and Phishing. See definitions below.

What Technology Is Most Commonly Used For Texting?

Texting can be accomplished using several different technologies but the oldest and most common is Short Message Service which is reduced to the acronym SMS.

What is Phishing?

Phishing is a communication (usually email) sent by a malicious actor (aka: threat actor, hacker, bad guy) to mislead the recipient into voluntarily providing private information.

hacker scammer worried user looking over laptop

Phishing can be done by phone, text, fax, email or even old paper mail, and uses Social Engineering to trick the recipient.

The term phishing is the combination of the word Fishing and Phreaks, which is what hackers in the 1990’s called themselves.

There are many sub-types of phishing including Spear Phishing which are highly targeted messages sent to just one person rather than the more generic mass emails. Whaling is just Spear Phishing a high profile or high value target like a CEO or very popular actor.

What is a Phishing Kit?

Phishing is highly lucrative form of fraud that now has unscrupulous IT companies providing phishing-as-a-service, services. These companies provide hackers with prebuilt phishing campaigns and servers operate their nasty business with ease.

Think of a Phishing Kit the same way you think of Gmail or Yahoo mail, in that it used to require software, systems and complex configurations to send and receive your email, and now all you have to do is log in to get email to work.

What is Social Engineering?

Social Engineering is the art of misleading someone into providing confidential information. Bad guys are really good at Social Engineering because they have had years of practice to learn what works and what does not.

Social Engineering communications (email, phone calls, …) nearly always have two elements:

  1. pretending to be someone else like a senior company official, grand child, government agency, courier company, collections agency…
  2. urgent action required for example:
    • grand child in jail and needs bail money
    • company has a deal closing in 4 hours and needs money / information right now
Categories: Business & Tech News

1 Comment

SOLVED: VIDEO: How to Add a Logo To Microsoft 365 & Azure Logon Pages – Up & Running Technologies, Tech How To's · November 15, 2023 at 6:50 pm

[…] they log in. It’s just one more hurdle for the hackers to get through when they are trying to phish your staff. Also, it just looks more professional to use your own colors and logo on your Microsoft […]

Reply

Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *

Related Posts

ai computer brain

How to Use AI in Software Development

AI is about making smarter applications that improve user experience and functionality. From automating tedious tasks to enhancing software testing and maintenance, AI is a key player in modern software practices. If you want to Read more…

laptop with computer code on it

Using IT Solutions to Navigate Digital Transformation

The business world is undergoing radical change as companies adjust to their new digital realities. IT solutions are becoming a key means of increasing security while at the same time raising productivity and extending the Read more…

gambling cards chips dice

How Technological Advancements have Revolutionized Online Casinos from Gameplay to Payment Methods

Technology has had a monumental impact on the gaming industry, with advancements over the last three decades allowing players to access games on a variety of digital platforms. While for much of the 20th century, Read more…