What are phishing campaigns?

Phishing campaigns are when bad guys send out lots of fake messages at once to trick you into giving away your secrets or money.

Imagine you are playing with your favorite toy, but a stranger walks up and says, "Hey! Your toy belongs to me because I wrote it down on my list first!" You might look confused, but if they sound sure of themselves, you might hand it over. That is exactly what happens online.

The Fake Letters

When someone sends you an email that looks like it comes from your teacher or the ice cream shop, it is often part of a phishing campaign. The attacker casts a wide net to catch many people at once. They send thousands of emails that look almost real. You get one and think nothing of it. But if you click the button inside, they get your password.

Think of it like a game of hide-and-seek where the seeker wears a disguise. If the disguise is good enough, you do not notice until too late. The "bad guys" use addresses that look similar to real ones. For example, instead of bank. com, they might use bark. com. It looks right at first glance, but it is different.

Why So Many?

They call it a campaign because they do not just send one email. They send thousands. Some people will fall for it. That is okay with them. It does not matter if only a few people give up their toy, as long as enough do. They keep sending and waiting for the right moment to catch you.

So next time you get an email saying you won a prize or need to update your info, take a second look. Check the sender's name carefully. Do not just hand over your secret toy without checking who is really asking for it.

Take the quiz →

Examples

  1. A fake email looks just like your teacher asking for homework money
  2. Someone pretends to be Santa by wearing a red suit and hat
  3. A dog barking at the mailman who brings the real letters

Ask a question

See also

Discussion

Recent activity