Spear phishing is a tactic that uses social engineering to tailor e-mails to individuals or groups based o their line of work, interest, or personal characteristics. Spear phishing e-mails will be about a subject that is relevant to the recipient and will appear to be sent by a credible source.
How to detect a spear phishing e-mail
Before opening attachments or clicking on links, ensure that:
- You really know who is sending the e-mail and that the tone is consistent for the sender
- The content is really relevant to your work and not just related to your area of interest
- The web-address or attachment is relevant to the content of the e-mail
- You use extra caution if the e-mail is from a personal address (@yahoo.ca, @gmail.com) or a suspicious domain