Spear Phishing

Spear phishing is a targeted form of phishing. Instead of sending the email out to everyone indiscriminately, a spear phishing attack attempts to target specific groups of users, or even a single user. Spear phishing attacks may target employees within a company or customers of a company.

As an example, an attacker might try to impersonate the CEO of an organization in an email. It’s relatively simple to change the header of an email so that the From field includes anything, including the CEO’s name and title. Attackers can send an email to all employees requesting that they reply with their password. Because the email looks like it’s coming from the CEO, these types of phishing emails fool uneducated users.

One solution that deters the success of these types of spear phishing attacks is to use digital signatures. The CEO and anyone else in the company can sign their emails with a digital signature. This provides a high level of certainty to personnel on who sent the email.

A digital signature provides authentication, non-repudiation, and integrity.

Authentication validates an identity.
Non-repudiation prevents a party from denying an action.
Users sign emails with a digital signature, which is a hash of an email message encrypted with the sender’s private key.
Only the sender’s public key can decrypt the hash, providing verification it was encrypted with the sender’s private key.

See also Phishing and Whaling.

Are you ready to become Security+ certified?

SY0-601 Study PackageHere's what you'll getWhat people are saying

Pass the first time with quality practice test questions, performance-based questions, flashcards, and audio.

Get an online study package that helps you:

Study using multiple materials online
Use them to complement Darril Gibson’s CompTIA Security+ Get Certified Get Ahead: SY0-601 Study Guide book or any other study guide you’re using
Ensure you’re ready for the exam no matter what study guide you’re using

SY0-601 Full Study Package is available here.

Package includes hundreds of multiple-choice practice test questions, performance-based questions, audio, and flashcards.

Over 385 Realistic SY0-601 Security+ Practice Test Questions

All questions include explanations so you’ll know why the correct answers are correct, and why the incorrect answers are incorrect. These questions are derived from and organized by chapters in the CompTIA Security+ Get Certified Get Ahead: SY0-601 Study Guide. See a demo here.

Extra Test Bank of Practice Test Questions

Questions are added occasionally. You can see what has been added recently here.

Performance-based Questions

Performance-based questions including at least 10 questions. These questions show you what you can expect in the live exam. They include drag and drop, matching, sorting, and fill in the blank questions.

Online Flashcard Set

771 Online Security+ Glossary Flashcards
255 Online Security+ Acronyms Flashcards
217 Online Security+ Remember This Slide from the popular CompTIA Security+ Get Certified Get Ahead: SY0-601 Study Guide

Check out the demo here.

Audio – SY0-601 Security+ Remember This Audio Files

Learn by Listening.

Over one hour of audio repeating the Remember This blocks from the popular CompTIA Security+: Get Certified Get Ahead: SY0-601 Study Guide. (MP3 downloads.)

Audio – SY0-601 Security+ Question and Answer Audio Files

Learn by Listening.

Over five hours of audio repeating questions and answers from the 11 chapters in the popular CompTIA Security+: Get Certified Get Ahead: SY0-601 Study Guide. (MP3 downloads.)

Bonus #1
The same set of questions organized by domain including questions in the CompTIA Security+ Get Certified Get Ahead: SY0-601 Study Guide plus extra practice test questions.

Bonus #2
Audio from the end of chapter reviews from each of the chapters in the CompTIA Security+: Get Certified Get Ahead: SY0-601 Study Guide. Over one hour and 45 minutes of additional audio.

Bonus #3
Access to all of the online content that is available for free to anyone that purchases the CompTIA Security+ Get Certified Get Ahead: SY0-601 Study Guide. This includes labs, extra practice test questions, and supplementary materials.

Bonus #4
Extended access. Access the study materials for a total of 60 days because sometimes life happens

Bonus #5
10% off Voucher. Access to a coupon code that will give you 10% off your exam voucher. At the current price of $370 USD for the Security+ voucher, this can save you $37.

Get the SY0-601 Full Study Package here.

“I re-took it at an in-person testing center, and due to NOT being
constantly distracted by a paranoid schizophrenic proctor, I was able to pass the thing.

Your textbook was instrumental in achieving that, couldn’t have done it without your work. Thank you.”

“I just wanted to say thank you for providing your knowledge via your textbook geared towards passing the Security+ (SY0-601). I just passed my exam on the first try!

Thanks again.”

“Today I took and passed my SY0-601 Exam.

Score 771/900

This is my 4rth COMPTIA exam and I nearly had the same score on each test. Roughly on each test I got 85%.

I have used your web services/books for A+, Network+ and Security+
“

“I wish to inform you that I passed the sec plus certification (sy0-501)on my second attempt. Your material was very useful and it constituted 80% of the material I used in preparing for the exam.”