CSIAC

Cyber Security and Information Systems Information Analysis Center

/ Phishing

Topic: Phishing

Phishing is the fraudulent practice of sending emails purporting to be from reputable companies in order to induce individuals to reveal personal information, such as passwords and credit card numbers.

The CSIAC has compiled many resources on the topic of Phishing. Please browse the resources below.

Event

CSIAC Webinars – Phishing for Solutions: Are Cybersecurity Compliance Based Programs Working?

| Event Starts on Thursday, December 13th 2018 at 12:00 PM and Ends on Thursday, December 13th 2018 at 1:00 PM

Phishing and spear phishing, i.e. social engineering, have rendered today’s users defenseless against increasingly sophisticated cyber-attacks. In 2016, the Director of National Intelligence (DNI) reported that 91% of all successful cyber-attacks against the Federal Government in 2015 were enabled by social engineering. In short, 91% of successful Read More

CSIAC Webinar

Phishing for Solutions: Are Cybersecurity Compliance Based Programs Working?

| Presenter: Dr. Terry R. Merz, CISSP, CISM | 2 Comments

Phishing and spear phishing, i.e. social engineering, have rendered today’s users defenseless against increasingly sophisticated cyber-attacks. In 2016, the Director of National Intelligence (DNI) reported that 91% of all successful cyber-attacks against the Federal Government in 2015 were enabled by social engineering. In short, 91% of successful Read More

Author / Presenter

Dr. Terry R. Merz, CISSP, CISM

| Leave a Comment

Dr. Merz is a Senior Research Scientist at the Pacific Northwest National Laboratory (PNNL). She holds a Doctorate and Masters in Computer Science, with a concentration in Information Assurance from Colorado Technical University, and a Bachelor of Science in Information Management from the University of Maryland. Dr. Merz has 17+ years of cybersecurity Read More

Podcast

Phishing

| Leave a Comment

Scamming users into giving up their information is not a new concept. However, for users to avoid modern phishing attempts, we need to understand the basics of everyday internet infrastructures such as URL links, web domain structure, and common attack techniques. This video discusses how attackers use phishing techniques to gain unauthorized access to a Read More

Podcast

Phishing – Simple Steps to Online Safety

| Leave a Comment

Phishing is a malicious technique used to steal personal information. Malicious actors often use the stolen information for theft or blackmail. To protect your organization, follow a few guidelines: Train your users to spot email scams and fake offers. Scams often have poor grammar or strange account names. Persistent phishing campaigns are Read More

Air Force Research Laboratory (AFRL) Army Research Laboratory (ARL) Artificial Intelligence (AI) Autonomy and Autonomous Systems Biometrics Cloud Computing Critical Infrastructure Protection (CIP) Cryptocurrency Cryptography cyberattack Cyber Legislation Cybersecurity Training Cyberwarfare Cyber Workforce Data Privacy Data Security Defense Information Systems Agency (DISA) Defense Modeling & Simulation Coordination Office (DMSCO) Defense Technical Information Center (DTIC) DoD Acquisition Lifecycle Encryption High Performance Computing Insider Threat Internet of Things (IoT) Intrusion Detection Linux Machine Learning (ML) Malware Microsoft Mobile Security National Cyber Security Awareness Month (NCSAM) National Institute of Standards and Technology (NIST) Network Security Open Source Software Operational Technology (OT) Password Security Phishing Protecting Controlled Unclassified Information (CUI) Quantum Computing Ransomware Risk Management Framework (RMF) Secure Software Software Assurance Wargaming Workplace Security