The threats to email security, believe it or not, have come as far as identity theft. In fact, one type of email security threat was especially conceptualized and developed to trick unsuspecting email recipients into revealing their private information to fraudulent individuals. This type of email security threat, which also doubles as identity theft, is called phishing.
How this email security threat works
The phishers, claiming to be representatives of reputable enterprises, send emails to unsuspecting users to request for personal information. The users then click on the link contained in the email and they are directed to a forged website where they are supposed to enter their private information such as user names, social security numbers, passwords, and credit and bank account details. Phishing becomes an email security threat when the phishers use the recently acquired information to illegally access the unsuspecting users’ private accounts. Phishers sometimes even go as far as stealing money from the users’ bank accounts.
Why this email security threat succeeds
Many users are easily scammed by this email security threat because every detail seems very legitimate. The websites where the links are directed to, for instance, are forged into perfection: the logos look authentic, the signatures appear to be authorized, and the information seems realistic. Even the URLs used in the forged websites are neatly altered. To make the URLs legitimate-looking, phishers alter the address bar by manipulating JavaScript commands. They either override the address bar with an image of a legitimate URL or replace the address bar with a new one.