What types of attacks are most common via email?

Phishing (via email): t is a type of fraud in which an attacker sends fake emails that appear legitimate in order to trick the victim into revealing sensitive information, such as passwords, credit card numbers, or login credentials.

Example:

• • Subjet: Update your account immediately!
  • Message: Dear customer, we detected suspicious activity in your account. Click the link below to confirm your information and avoid having your account blocked.
  • How it works: The attacker attempts to get the victim to click a fake link and enter their credentials.

Smishing (via SMS): It is a variation of phishing carried out through text messages (SMS), which try to convince the person to click a malicious link or provide personal information.

Example:

• • CTT: Your package could not be delivered. To reschedule, pay €1.75 using the secure link: ctt-entrega-verificacao.com
  • How it works: The SMS creates a sense of urgency so that the person clicks a fraudulent link.

Vishing (via phone call): It is a type of fraud in which the attacker makes fake phone calls, pretending to be a trusted entity to manipulate the victim and obtain personal or financial data.

Example:

• • Good afternoon, this is the bank’s security department. We detected a suspicious transaction. To block it, I need to confirm your account number and access codes.
  • How it works: The attacker impersonates a trusted organization to extract sensitive information.