Once they have enough information, they will create a genuine-looking email that acts as a friend or someone they know to send a persuasive yet fraudulent communication.
These may also contain a sense of urgency to help increase the chance of success alongside explaining why it is required immediately. The information requested is often similar to that of a phishing attack. There will often be a malicious attachment or a link leading to a website that asks for personal details, including passwords. Alternatively, if the attacker is pretending to be a friend, they may ask for login details directly for various websites such as social media. Once they acquire this, they will attempt to access other websites with these logins to steal confidential information, including credit card details.
Due to the personalized, individual-focused method of attack, it is often harder to identify spear phishing attempts. This means these types of social engineering schemes are becoming more prevalent in this digital age.
To find out more about how we can help you with your cyber security, contact us today.