Curriculum > Information Security & GDPR > Targeted Attacks > IS114

Spear Phishing

Source: The National Cyber Security Centre (NCSC)

Tutorial Content

At a Glance

  • Background & Terminology
  • Recognising Threat Vector
  • 1 Case Study

Expanding upon the preceeding Phishing, don’t Take the Bait topic, this tutorial examines the more sophisticated threat of spear phishing. Typically targeting high-value individuals, sprear phishing attacks can not only be difficult to spot, but also extremely damaging to organisations.

“The targeted nature of this attack makes it more difficult to detect as an attacker tailors the content of their message to their target.”

- Hut Six, Spear Phishing

Learning Objectives

  • Verifying Action Requests
  • Identification Methods
  • Phishing Tactics
  • Completion time: ~ 9 minutes