Skip to content
geeksforgeeks
  • Tutorials
    • Python
    • Java
    • Data Structures & Algorithms
    • ML & Data Science
    • Interview Corner
    • Programming Languages
    • Web Development
    • CS Subjects
    • DevOps And Linux
    • School Learning
    • Practice Coding Problems
  • Courses
    • DSA to Development
    • Get IBM Certification
    • Newly Launched!
      • Master Django Framework
      • Become AWS Certified
    • For Working Professionals
      • Interview 101: DSA & System Design
      • Data Science Training Program
      • JAVA Backend Development (Live)
      • DevOps Engineering (LIVE)
      • Data Structures & Algorithms in Python
    • For Students
      • Placement Preparation Course
      • Data Science (Live)
      • Data Structure & Algorithm-Self Paced (C++/JAVA)
      • Master Competitive Programming (Live)
      • Full Stack Development with React & Node JS (Live)
    • Full Stack Development
    • Data Science Program
    • All Courses
  • CBSE
  • CBSE Notes
  • Class 11 Syllabus
  • Class 11 Revision Notes
  • Maths Notes Class 11
  • Physics Notes Class 11
  • Chemistry Notes Class 11
  • Biology Notes Class 11
  • NCERT Solutions Class 11 Maths
  • RD Sharma Solutions Class 11
  • Math Formulas Class 11
Open In App
Next Article:
Cyber Crime - Identity Theft
Next article icon

What is Phishing?

Last Updated : 13 Jun, 2024
Comments
Improve
Suggest changes
Like Article
Like
Report

Phishing is a form of online fraud in which hackers attempt to get your private information such as passwords, credit cards, or bank account data. This is usually done by sending false emails or messages that appear to be from trusted sources like banks or well-known websites. They aim to convince you so that they can manage to have your information and use it as a fraudster. Always ensure that you are certain about whom you are dealing with before you provide any information.

What is a Phishing Attack?

Phishing is another type of cyber attack. Phishing got its name from "phish" meaning fish. It's a common phenomenon to put bait for the fish to get trapped. Similarly, phishing works. It is an unethical way to dupe the user or victim to click on harmful sites. The attacker crafts the harmful site in such a way that the victim feels it to be an authentic site, thus falling prey to it. The most common mode of phishing is by sending spam emails that appear to be authentic and thus, taking away all credentials from the victim. The main motive of the attacker behind phishing is to gain confidential information like:

  • Password
  • Credit card details
  • Social security numbers
  • Date of birth

The attacker uses this information to further target the user impersonate the user and cause data theft. The most common type of phishing attack happens through email. Phishing victims are tricked into revealing information that they think should be kept private. The original logo of the email is used to make the user believe that it is indeed the original email. But if we carefully look into the details, we will find that the URL or web address is not authentic. Let's understand this concept with the help of an example:

Phishing
Phishing

In this example, most people believe it's YouTube just by looking at the red icon. So, thinking of YouTube as a secure platform, the users click on the extension without being suspicious about it. But if we look carefully, we can see the URL is supertube.com and not youtube.com. Secondly, YouTube never asks to add extensions for watching any video. The third thing is the extension name itself is weird enough to raise doubt about its credibility.

How is Phishing Carried Out?

Below mentioned are the ways through which Phishing generally occurs. Upon using any of the techniques mentioned below, the user can lead to Phishing Attacks.

  • Clicking on an unknown file or attachment: Here, the attacker deliberately sends a mysterious file to the victim, as the victim opens the file, either malware is injected into his system or it prompts the user to enter confidential data.
  • Using an open or free wifi hotspot: This is a very simple way to get confidential information from the user by luring him by giving him free wifi. The wifi owner can control the user's data without the user knowing it.
  • Responding to social media requests: This commonly includes social engineering. Accepting unknown friend requests and then, by mistake, leaking secret data are the most common mistakes made by naive users.
  • Clicking on unauthenticated links or ads: Unauthenticated links have been deliberately crafted that lead to a phished website that tricks the user into typing confidential data.

Types of Phishing Attacks

There are several types of Phishing Attacks, some of which are mentioned below. Below mentioned attacks below are very common and mostly used by attackers.

  • Email Phishing: The most common type where users are tricked into clicking unverified spam emails and leaking secret data. Hackers impersonate a legitimate identity and send emails to mass victims. Generally, the goal of the attacker is to get personal details like bank details, credit card numbers, user IDs, and passwords of any online shopping website, installing malware, etc. After getting the personal information, they use this information to steal money from the user's account or harm the target system, etc.
  • Spear Phishing: In spear phishing a phishing attack, a particular user(organization or individual) is targeted. In this method, the attacker first gets the full information of the target and then sends malicious emails to his/her inbox to trap him into typing confidential data. For example, the attacker targets someone(let's assume an employee from the finance department of some organization). Then the attacker pretends to be like the manager of that employee and then requests personal information or transfers a large sum of money. It is the most successful attack.
  • Whaling: Whaling is just like spear-phishing but the main target is the head of the company, like the CEO, CFO, etc. A pressurized email is sent to such executives so that they don't have much time to think, therefore falling prey to phishing.
  • Smishing: In this type of phishing attack, the medium of phishing attack is SMS. Smishing works similarly to email phishing. SMS texts are sent to victims containing links to phished websites or invite the victims to call a phone number or to contact the sender using the given email. The victim is then invited to enter their personal information like bank details, credit card information, user ID/ password, etc. Then using this information the attacker harms the victim.
  • Vishing: Vishing is also known as voice phishing. In this method, the attacker calls the victim using modern caller ID spoofing to convince the victim that the call is from a trusted source. Attackers also use IVR to make it difficult for legal authorities to trace the attacker. It is generally used to steal credit card numbers or confidential data from the victim.
  • Clone Phishing: Clone Phishing this type of phishing attack, the attacker copies the email messages that were sent from a trusted source and then alters the information by adding a link that redirects the victim to a malicious or fake website. Now the attacker sends this mail to a larger number of users and then waits to watch who clicks on the attachment that was sent in the email. It spreads through the contacts of the user who has clicked on the attachment.

Impact of Phishing

These are the impacts on the user upon affecting the Phishing Attacks. Each person has their impact after getting into Phishing Attacks, but these are some of the common impacts that happen to the majority of people.

  • Financial Loss: Phishing attacks often target financial information, such as credit card numbers and bank account login credentials. This information can be used to steal money or make unauthorized purchases, leading to significant financial losses.
  • Identity Theft: Phishing attacks can also steal personal information, such as Social Security numbers and date of birth, which can be used to steal an individual's identity and cause long-term harm.
  • Damage to Reputation: Organizations that fall victim to phishing attacks can suffer damage to their reputation, as customers and clients may lose trust in the company's ability to protect their information.
  • Disruption to Business Operations: Phishing attacks can also cause significant disruption to business operations, as employees may have their email accounts or computers compromised, leading to lost productivity and data.
  • Spread of Malware: Phishing attacks often use attachments or links to deliver malware, which can infect a victim's computer or network and cause further harm.
Phishing
Phishing

Signs of Phishing 

It is very important to be able to identify the signs of a phishing attack to protect against its harmful effects. These signs help the user to protect user data and information from hackers. Here are some signs to look out for include:

  • Suspicious email addresses: Phishing emails often use fake email addresses that appear to be from a trusted source, but are controlled by the attacker. Check the email address carefully and look for slight variations or misspellings that may indicate a fake address.
  • Urgent requests for personal information: Phishing attacks often try to create a sense of urgency to trick victims into providing personal information quickly. Be cautious of emails or messages that ask for personal information and make sure to verify the authenticity of the request before providing any information.
  • Poor grammar and spelling: Phishing attacks are often created quickly and carelessly, and may contain poor grammar and spelling errors. These mistakes can indicate that the email or message is not legitimate.
  • Requests for sensitive information: Phishing attacks often try to steal sensitive information, such as login credentials and financial information. Be cautious of emails or messages that ask for sensitive information and verify the authenticity of the request before providing any information.
  • Unusual links or attachments: Phishing attacks often use links or attachments to deliver malware or redirect victims to fake websites. Be cautious of links or attachments in emails or messages, especially from unknown or untrusted sources.
  • Strange URLs: Phishing attacks often use fake websites that look similar to the real ones, but have slightly different URLs. Look for strange URLs or slight variations in the URL that may indicate a fake website.

How To Stay Protected Against Phishing?

Until now, we have seen how a user becomes so vulnerable due to phishing. But with proper precautions, one can avoid such scams. Below are the ways listed to protect users against phishing attacks:

  • Authorized Source: Download software from authorized sources only where you have trust.
  • Confidentiality: Never share your private details with unknown links and keep your data safe from hackers.
  • Check URL: Always check the URL of websites to prevent any such attack. it will help you not get trapped in Phishing Attacks.
  • Avoid replying to suspicious things: If you receive an email from a known source but that email looks suspicious, then contact the source with a new email rather than using the reply option.
  • Phishing Detection Tool: Use phishing-detecting tools to monitor the websites that are crafted and contain unauthentic content.
  • Try to avoid free wifi: Avoid using free Wifi, it will lead to threats and Phishing.
  • Keep your system updated: It's better to keep your system always updated to protect from different types of Phishing Attacks. 
  • Keep the firewall of the system ON: Keeping ON the firewalls helps you filter ambiguous and suspicious data and only authenticated data will reach you.

How To Distinguish Between a Fake Website and a Real Website?

It is very important nowadays to protect yourself from fake websites and real websites. Here are some of the ways mentioned to identify which websites are real and which ones are fake. To distinguish between a fake website and a real website always remember the following points:

  • Check the URL of the website: A good and legal website always uses a secure medium to protect yourself from online threats. So, when you first see a website link, always check the beginning of the website. That means if a website is started with https:// then the website is secure because https:// "s" denotes secure, which means the website uses encryption to transfer data, protecting it from hackers. If a website uses http:// then the website is not guaranteed to be safe. So, it is advised not to visit HTTP websites as they are not secure.
  • Check the domain name of the website: The attackers generally create a website whose address mimics large brands or companies like www.amazon.com/order_id=23. If we look closely, we can see that it's a fake website as the spelling of Amazon is wrong, that is amazon is written. So it's a phished website. So be careful with such types of websites.
  • Look for site design: If you open a website from the link, then pay attention to the design of the site. Although the attacker tries to imitate the original one as much as possible, they still lack in some places. So, if you see something off, then that might be a sign of a fake website. For example, www.sugarcube.com/facebook, when we open this URL the page open is cloned to the actual Facebook page but it is a fake website. The original link to Facebook is www.facebook.com.
  • Check for the available web pages: A fake website does not contain the entire web pages that are present in the original website. So when you encounter fake websites, then open the option(links) present on that website. If they only display a login page, then the website is fake.

Anti-Phishing Tools

Well, it's essential to use Anti-Phishing tools to detect phishing attacks. Here are some of the most popular and effective anti-phishing tools available:

  • Anti-Phishing Domain Advisor (APDA): A browser extension that warns users when they visit a phishing website. It uses a database of known phishing sites and provides real-time protection against new threats.
  • PhishTank: A community-driven website that collects and verifies reports of phishing attacks. Users can submit phishing reports and check the status of suspicious websites.
  • Webroot Anti-Phishing: A browser extension that uses machine learning algorithms to identify and block phishing websites. It provides real-time protection and integrates with other security tools.
  • Malwarebytes Anti-Phishing: A security tool that protects against phishing attacks by detecting and blocking suspicious websites. It uses a combination of machine learning and signature-based detection to provide real-time protection.
  • Kaspersky Anti-Phishing: A browser extension that provides real-time protection against phishing attacks. It uses a database of known phishing sites and integrates with other security tools to provide comprehensive protection.

Note: These anti-phishing tools can provide an additional layer of protection against phishing attacks, but it is important to remember that they are not a complete solution. Users should also be cautious of suspicious emails and messages and practice safe browsing habits to minimize their risk of falling victim to phishing attacks.

Conclusion

Therefore, phishing attacks are a serious problem that can steal your data. When it comes to your personal information, always confirm the person requesting for your data. If you are not sure whether the request is genuine or fraudulent, never share any personal information. Always stay alert to avoid such tricks and protect yourself from fraudsters.


Next Article
Cyber Crime - Identity Theft

A
abhijithoyur
Improve
Article Tags :
  • Computer Science Fundamentals
  • School Learning
  • Class 11

Similar Reads

    Cyber Security Tutorial
    Cyber security is the process of using best practices to protect computers, servers, systems, networks, and programs from digital attacks such as viruses, worms, ransomware, and other threats aimed at accessing, changing, or destroying sensitive data, extorting money from users, or interrupting norm
    11 min read

    Introduction

    OSI Security Architecture
    The OSI Security Architecture is internationally recognized and provides a standardized technique for deploying security measures within an organization. It focuses on three major concepts: security attacks, security mechanisms, and security services, which are critical in protecting data and commun
    8 min read
    Active and Passive attacks in Information Security
    In Cybersecurity, there are several kinds of cyber threats you need to know these days, that can relate to computer security, network security, and information security. There are basically two forms of threats: active and passive attacks. An active attack is an attack in which attackers directly ha
    9 min read
    Types of Security Mechanism
    A security mechanism is a method or technology that protects data and systems from unauthorized access, attacks, and other threats. Security measures provide data integrity, confidentiality, and availability, thereby protecting sensitive information and maintaining trust in digital transactions. In
    3 min read
    A Model for Network Security
    When we send our data from the source side to the destination side we have to use some transfer method like the internet or any other communication channel by which we are able to send our message. The two parties, who are the principals in this transaction, must cooperate for the exchange to take p
    2 min read

    Cyber Technology

    Basics of Wi-Fi
    We've been studying a lot about the Wired Network. Ethernet is the most common example. Wired networks differ from wireless which uses radio waves rather than transmitting electrical signals over the cables. Wi-Fi stands for Wireless Fidelity. It is a technology for wireless local area networking wi
    3 min read
    The Internet and the Web
    Introduction :The internet is a global network of interconnected computers and servers that allows people to communicate, share information, and access resources from anywhere in the world. It was created in the 1960s by the US Department of Defense as a way to connect computers and share informatio
    6 min read
    What is a Website ?
    A website is a collection of many web pages, and web pages are digital files that are written using HTML(HyperText Markup Language). To make your website available to every person in the world, it must be stored or hosted on a computer connected to the Internet round a clock. Such computers are know
    5 min read
    Cryptography and Network Security Principles
    In the present-day scenario security of the system is the sole priority of any organization. The main aim of any organization is to protect their data from attackers. In cryptography, attacks are of two types: Passive attacks and Active attacks. Passive attacks are those that retrieve information fr
    9 min read
    Public Key Infrastructure
    Public key infrastructure or PKI is the governing body behind issuing digital certificates. It helps to protect confidential data and gives unique identities to users and systems. Thus, it ensures security in communications. The public key infrastructure uses a pair of keys: the public key and the p
    7 min read
    What is Electronic Signature?
    Electronic signature or e-signature is an electronic way of signing a document or data through electronic devices, this means that such a digital form of signing is also seen as legal and authentic like the conventional hand-written one, whereby signatory has read all contents and accepted them, the
    7 min read
    Identity and Access Management
    In a recent study by Verizon, 63% of the confirmed data breaches are due to either weak, stolen, or default passwords used. There is a saying in the cybersecurity world that goes like this “No matter how good your chain is it’s only as strong as your weakest link.” and exactly hackers use the weakes
    11 min read
    What Is Cloud Computing ? Types, Architecture, Examples and Benefits
    Nowadays, Cloud computing is adopted by every company, whether it is an MNC or a startup many are still migrating towards it because of the cost-cutting, lesser maintenance, and the increased capacity of the data with the help of servers maintained by the cloud providers. Cloud Computing means stori
    14 min read

    Cyber Ethics

    What is Cyberethics?
    Cyberethics is a branch of computer technology that defines the best practices that must be adopted by a user when he uses the computer system. In simple terms, it is the study of ethical issues related to the use of technology. It engages users to use the internet safely and use technology responsi
    5 min read
    Trademarks
    Trademarks are the marks that are external to the goods to make the public identify a certain quality and image related with that product or service. It is an important way of promoting goodwill of the company or organisation with its clients or customers. It has a legal protection to prevent others
    2 min read
    Fundamental Rights (Articles 12-35): A Comprehensive Guide
    Constitutional Rights in India: Articles 12-35 of the Indian Constitution are the all about fundamental rights which are essential human rights granted to every citizen of India. The fundamental rights in the Indian Constitution prevent discrimination based on race, religion, gender, and more. The F
    14 min read
    Introduction to Ethical Hacking
    Today, computer and network security against cyber threats of increasing sophistication is more important than it has ever been. Such an endeavor cannot be accomplished without ethical hacking. Ethical hacking means that authorized individuals work at exposing a security vulnerability and ultimately
    10 min read

    Cyber Crimes

    Cyber Crime
    Cybercrime refers to criminal activities carried out using computers and the internet, including hacking, data theft, malware attacks, and financial fraud. With businesses, governments, and individuals relying heavily on digital platforms, cyber threats have escalated, leading to billions in financi
    12 min read
    Cyber Criminals and their types
    Cybercriminals are people who use the internet to commit illegal activities. They hack into computers, steal personal information, or spread harmful software. Their actions can harm individuals, businesses, and organizations. Often, they aim to make money, cause disruption, or gain unauthorized acce
    5 min read
    Psychological Profiling in Cybersecurity
    The Cybersecurity Profiling is about keeping the computer systems safe from the bad peoples who want to steal the information or can cause harm. To do this better experts study the minds of these bad peoples called the cybercriminals. This study is called the psychological profiling. It helps us to
    7 min read
    What is Social Engineering? Working, Types, Prevention and Impact
    Social Engineering is an umbrella term for multiple malicious activities done by cyber criminals over the internet through human interaction. It doesn't involve the use of technical hacking techniques. Attackers use psychology and manipulation to trick users into performing actions that could compro
    8 min read
    Cyberstalking
    In Cyber Stalking, a cyber criminal uses the internet to threaten somebody consistently. This crime is often done through email, social media, and other online mediums. Cyber Stalking can even occur in conjunction with the additional ancient type of stalking, wherever the bad person harasses the vic
    7 min read
    How to Defend Against Botnets ?
    A botnet is a network of computers or devices that have been compromised and are controlled by an attacker, without the knowledge of the owners. These devices, once infected with malware, are controlled by the attacker to carry out activities, such as sending spam emails, launching distributed denia
    5 min read
    Emerging Attack Vectors in Cyber Security
    In Cyber Security, knowing about attack vectors is key to keeping information safe and systems secure. An attack vector is a way that cybercriminals use to break into a network, system, or application by taking advantage of weaknesses. Attack vectors refer to the various paths or methods that attack
    7 min read
    What is Malware? And its Types
    Malware is malicious software and refers to any software that is designed to cause harm to computer systems, networks, or users. Malware can take many forms. Individuals and organizations need to be aware of the different types of malware and take steps to protect their systems, such as using antivi
    8 min read
    What is Phishing?
    Phishing is a form of online fraud in which hackers attempt to get your private information such as passwords, credit cards, or bank account data. This is usually done by sending false emails or messages that appear to be from trusted sources like banks or well-known websites. They aim to convince y
    12 min read
    Cyber Crime - Identity Theft
    Identity Theft also called Identity Fraud is a crime that is being committed by a huge number nowadays. Identity theft happens when someone steals your personal information to commit fraud. This theft is committed in many ways by gathering personal information such as transactional information of an
    5 min read
    What is Cyber Terrorism?
    In the computerized age, where innovation saturates each part of day-to-day existence, the idea of digital psychological warfare has arisen as a huge danger. Digital illegal intimidation alludes to the purposeful utilization of computerized assaults to inflict any kind of damage, interruption, or dr
    13 min read

    Cyber Crime Techniques

    What is Proxy Server?
    A proxy server acts as a gateway between your device and the internet, masking your IP address and enhancing online privacy. But what exactly does it do, and why is it critical for businesses, developers, and everyday users? In this guide, we’ll break down proxy servers in simple terms exploring how
    9 min read
    Introduction to Password Attacks | Ethical Hacking
    Password Attacks are one of the imperative phases of the hacking framework. Password Attacks or Cracking is a way to recuperate passwords from the information stored or sent by a PC or mainframe. The motivation behind password cracking is to assist a client with recuperating a failed authentication
    5 min read

    Keyloggers and Spyware

    Worms, Viruses and beyond !!
    This article introduces some very basic types of malicious content which may harm your PC in some way or the other.. The Threat The computer systems may become a victim of virus, worm, hacking etc types of attacks. The computer systems may crash, sensitive data can be stolen and misused or driver pr
    5 min read
    What is a Trojan Horse? Definition, Examples and More
    The name "Trojan Horse" is taken from a classical story of the Trojan War. It is a code that is malicious and has the capacity to take control of the computer. It is designed to steal, damage, or do some harmful actions on the computer. It tries to deceive the user to load and execute the files on t
    6 min read
    Image Steganography in Cryptography
    The word Steganography is derived from two Greek words- 'stegos' meaning 'to cover' and 'grayfia', meaning 'writing', thus translating to 'covered writing', or 'hidden writing'. Steganography is a method of hiding secret data, by embedding it into an audio, video, image, or text file. It is one of t
    8 min read
    Difference between DOS and DDOS attack
    Here in the spectrum of cybersecurity, the various types of attacks should be distinguished for systems and networks to be protected. There are two categories of these; DOS, the short form for Denial of Service, and DDOS, which stands for Distributed Denial of Service. Both are meant to flood the ta
    5 min read
    Types of SQL Injection (SQLi)
    SQL Injection is an attack that employs malicious SQL code to manipulate backend databases in order to obtain information that was not intended to be shown, The data may include sensitive corporate data, user lists, or confidential consumer details. This article contains types of SQL Injection with
    6 min read
    Buffer Overflow Attack with Example
    A buffer is a temporary area for data storage. When more data (than was originally allocated to be stored) gets placed by a program or system process, the extra data overflows. It causes some of that data to leak out into other buffers, which can corrupt or overwrite whatever data they were holding.
    3 min read
    Reverse Engineering - Software Engineering
    Software Reverse Engineering is a process of recovering the design, requirement specifications, and functions of a product from an analysis of its code. It builds a program database and generates information from this. This article focuses on discussing reverse engineering in detail. What is Reverse
    6 min read
    Difference Between Vulnerability and Exploit
    The concepts of vulnerability and exploit are fundamental in Cyber Security, yet they represent different aspects of security risks. While a vulnerability refers to a weakness or flaw in a system that could potentially be exploited, an exploit is the actual method or tool used by attackers to take a
    5 min read
    Basic Network Attacks in Computer Network
    Many people rely on the Internet for many of their professional, social and personal activities. But there are also people who attempt to damage our Internet-connected computers, violate our privacy and render inoperable the Internet services. Given the frequency and variety of existing attacks as w
    7 min read
    Kali Linux - Hacking Wi-Fi
    These days the Wi-Fi networks are more secure than the older days, These days most wireless access points use WPA(Wi-Fi Protection Access) 2 Pre Shared Key in order to secure the network. This WPA 2 uses a stronger encryption algorithm which is known as AES which is very difficult to crack. When it
    4 min read
    Web Server and its Types of Attacks
    Web Servers are where websites are stored. They are computers that run an operating system and are connected to a database to run multiple applications. A web server's primary responsibility is to show website content by storing, processing, and distributing web pages to users. Web servers are essen
    6 min read
    Types of VoIP Hacking and Countermeasures
    Voice over IP or Voice over Internet Protocol (VoIP) is a collection of different technologies and practices that allows the delivery of voice communication, images, audio, video, through packet data networks over the internet protocol. This makes it very cost-efficient, flexible, and various other
    4 min read
    How to Spoof SMS Message in Linux ?
    In this article, we will show how to spoof SMS messages in Linux using two of the following tools:- fake-smsSocial Engineering Toolkit (SET)1.) Fake-sms It is a tool written in simple script to send SMS anonymously. Features:Send sms anonymouslyFast sms deliveryInternational sms sending available.On
    2 min read

    Prevention and Protection

    Difference Between Backup and Recovery
    As technology continues to evolve, everyone uses a device for either work or entertainment, resulting in data being generated continuously. Keeping the data safe is very important. With the increase in data, ensuring its safety has become very important. Proper storage and protection of data have be
    4 min read
    Manual Code Review : Security Assessment
    Secure Code Review is code assessment for identifying security vulnerabilities at an early stage in development lifecycle. When used together with penetration testing(automated and manual), it can significantly improve security posture of an organization. This article does not discuss a process for
    3 min read
    Penetration Testing - Software Engineering
    In this guide, we'll explore the fundamentals of penetration testing, its importance in cybersecurity, and how it fits into the software development lifecycle (SDLC). From network security to web application security, we'll be going into various aspects of pen testing, equipping you with the knowled
    10 min read
    Security Testing Tools - Software Testing
    Security testing tools are essential for identifying and addressing vulnerabilities in applications, systems, and networks before they can be exploited by malicious attackers. These tools play a crucial role in safeguarding sensitive data, ensuring compliance, and maintaining trust with users. In mo
    8 min read
    Intrusion Detection System (IDS)
    Intrusion is when an attacker gets unauthorized access to a device, network, or system. Cyber criminals use advanced techniques to sneak into organizations without being detected. Intrusion Detection System (IDS) observes network traffic for malicious transactions and sends immediate alerts when it
    9 min read
    What is Vulnerability Assessment?
    Living in a world with more and more complex threats posted by cybercriminals, it is imperative that you shield your networks. A vulnerability scanning is done to understand areas that are prone to an attack by the invader before they exploit the system. The above measures not only protect data and
    6 min read
    Secure coding - What is it all about?
    So, you think you can code? Well, that’s great to know… The world needs more geeks and nerds like you and me… But are your programs secure? This is what this whole article is all about. Secure codingAs a programmer, it is not only your job but also a moral responsibility to ensure that your code doe
    5 min read

    Cyber Forensics

    Digital Forensics in Information Security
    Digital Forensics is a branch of forensic science which includes the identification, collection, analysis and reporting any valuable digital information in the digital devices related to the computer crimes, as a part of the investigation. In simple words, Digital Forensics is the process of identif
    2 min read
    Introduction of Computer Forensics
    INTRODUCTION Computer Forensics is a scientific method of investigation and analysis in order to gather evidence from digital devices or computer networks and components which is suitable for presentation in a court of law or legal body. It involves performing a structured investigation while mainta
    4 min read
    What is Network Forensics?
    Network forensics is about looking at how computers talk to each other. It helps us understand what happens in a company's computer systems. This is important when we need to find out if someone did something wrong using computers. To do network forensics well, we need to follow certain steps and us
    5 min read
    Computer Forensics Techniques
    Prerequisite: Introduction of Computer Forensics In the early 80s PCs became more popular and easily accessible to the general population, this also led to the increased use of computers in all fields and criminal activities were no exception to this. The word “forensics” means the use of science an
    3 min read
    Mobile Forensics - Definition, Uses, and Principles
    Mobile Device Forensics also referred to as cell phone forensics, is a specific subcategory of digital forensics that involves the recovery of digital data from smart mobile devices such as smartphones and tablets. Taking into consideration that these devices are used in various aspects of personal
    7 min read

    Cyber Crime Investigation

    Cybercrime Causes And Measures To Prevent them
    In day-to-day life, everyone is leading their life with technology. Our daily life depends on technology. So, nowadays everybody knows the internet and is aware of it. The Internet has everything that a human needs in terms of data. So, people are becoming addicted to the Internet. The percentage of
    10 min read
    Digital Evidence Collection in Cybersecurity
    In the early 80s PCs became more popular and easily accessible to the general population, this also led to the increased use of computers in all fields and criminal activities were no exception to this. As more and more computer-related crimes began to surface like computer frauds, software cracking
    7 min read
    Computer Forensic Report Format
    The main goal of Computer forensics is to perform a structured investigation on a computing device to find out what happened or who was responsible for what happened, while maintaining a proper documented chain of evidence in a formal report. Syntax or template of a Computer Forensic Report is as fo
    5 min read
    How to Stop Phishing?
    Phishing is the starting point of most cyberattacks. When sending malicious messages or creating a clone site, attackers use psychological techniques and social engineering tools, so protecting against such campaigns is not an easy task for information security professionals. To protect against phis
    8 min read
geeksforgeeks-footer-logo
Corporate & Communications Address:
A-143, 7th Floor, Sovereign Corporate Tower, Sector- 136, Noida, Uttar Pradesh (201305)
Registered Address:
K 061, Tower K, Gulshan Vivante Apartment, Sector 137, Noida, Gautam Buddh Nagar, Uttar Pradesh, 201305
GFG App on Play Store GFG App on App Store
Advertise with us
  • Company
  • About Us
  • Legal
  • Privacy Policy
  • In Media
  • Contact Us
  • Advertise with us
  • GFG Corporate Solution
  • Placement Training Program
  • Languages
  • Python
  • Java
  • C++
  • PHP
  • GoLang
  • SQL
  • R Language
  • Android Tutorial
  • Tutorials Archive
  • DSA
  • Data Structures
  • Algorithms
  • DSA for Beginners
  • Basic DSA Problems
  • DSA Roadmap
  • Top 100 DSA Interview Problems
  • DSA Roadmap by Sandeep Jain
  • All Cheat Sheets
  • Data Science & ML
  • Data Science With Python
  • Data Science For Beginner
  • Machine Learning
  • ML Maths
  • Data Visualisation
  • Pandas
  • NumPy
  • NLP
  • Deep Learning
  • Web Technologies
  • HTML
  • CSS
  • JavaScript
  • TypeScript
  • ReactJS
  • NextJS
  • Bootstrap
  • Web Design
  • Python Tutorial
  • Python Programming Examples
  • Python Projects
  • Python Tkinter
  • Python Web Scraping
  • OpenCV Tutorial
  • Python Interview Question
  • Django
  • Computer Science
  • Operating Systems
  • Computer Network
  • Database Management System
  • Software Engineering
  • Digital Logic Design
  • Engineering Maths
  • Software Development
  • Software Testing
  • DevOps
  • Git
  • Linux
  • AWS
  • Docker
  • Kubernetes
  • Azure
  • GCP
  • DevOps Roadmap
  • System Design
  • High Level Design
  • Low Level Design
  • UML Diagrams
  • Interview Guide
  • Design Patterns
  • OOAD
  • System Design Bootcamp
  • Interview Questions
  • Inteview Preparation
  • Competitive Programming
  • Top DS or Algo for CP
  • Company-Wise Recruitment Process
  • Company-Wise Preparation
  • Aptitude Preparation
  • Puzzles
  • School Subjects
  • Mathematics
  • Physics
  • Chemistry
  • Biology
  • Social Science
  • English Grammar
  • Commerce
  • World GK
  • GeeksforGeeks Videos
  • DSA
  • Python
  • Java
  • C++
  • Web Development
  • Data Science
  • CS Subjects
@GeeksforGeeks, Sanchhaya Education Private Limited, All rights reserved
We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy
Lightbox
Improvement
Suggest Changes
Help us improve. Share your suggestions to enhance the article. Contribute your expertise and make a difference in the GeeksforGeeks portal.
geeksforgeeks-suggest-icon
Create Improvement
Enhance the article with your expertise. Contribute to the GeeksforGeeks community and help create better learning resources for all.
geeksforgeeks-improvement-icon
Suggest Changes
min 4 words, max Words Limit:1000

Thank You!

Your suggestions are valuable to us.

What kind of Experience do you want to share?

Interview Experiences
Admission Experiences
Career Journeys
Work Experiences
Campus Experiences
Competitive Exam Experiences