What is Phishing?

Phishing is a made-up word composed of password and fishing. In this method of attack, cyber criminals send fake emails and ask recipients to follow links to fake websites and enter confidential information such as credentials, passwords, credit card numbers, etc.

In the case of phishing e-mails with Emotet, this malicious code can read the users' e-mail correspondence, both the addresses and the content. This data is then used to generate further e-mails whose sender, subject (subject line) and content imitate the authenticity of the sender in a way that has never been achieved before. As soon as attachments in these phishing e-mails are opened or "clicked on", EMOTET then loads further malware. Often, the user is asked to confirm the execution of the macro. In such a case, it is recommended to ask the sender.

In the document Detect and fend off phishing attacks you will find more helpful information, including indications of dubious e-mails, and real phishing examples.

What makes phishing e-mails easily recognizable can also be found on the pages of the BSI. Among other things, information about EMOTET is provided there.

Phishing Mail Videos

In the following you will see two videos that will give you valuable tips on how to recognize phishing emails in real life.

The videos were created by the SECUSO research group, which is part of the Institute for Applied Informatics and Formal Description Methods (AIFB) at the Karlsruhe Institute of Technology (KIT).

More information: https://secuso.aifb.kit.edu/99.php

Video: SECUSO / Alexander Lehmann 

NoPhish Video I: Absender prüfen & gefährliche Anhänge erkennen

NoPhish Video II: Gefährliche Links erkennen