Concepts
Diversion theft - trick person making delivery into delivering to wrong location
quid pro quo - offer technical service in exchange for data or login credentials
Elicitation - disarming conversations
Bait and switching - same product at lower price pop-up
Computer social engineering - Pharming - redirects traffic to attackers website, DNS cache poisoning, host file modifications
Spimming - spam over instant messaging
Clone phishing - clone of legitimate email,. website or digital content
e-wallet phishing - get e-wallet creds
tabnabbing and reverse tabnabbing - targets users with multiple tabs open, when not looking closed tab transfigures in legit looking website
Consent phishing - exploits OAuth
Search engine phishing - manipulating search engine results
Phishing tools: ShellPhish - social networks Social engineering toolkit - email, WEB and USB attacks
AiDeepfake tools Vidnaz, Deepfakesweb Synthesia DeepBrain AI Hoodem
Deepfake Lab
AI voice cloning tools
VEED.IO
Murf.AI resemble.AI ElevenLabs PlayHT voice.ai
Angler phishing: fake social media account impersonating org to post heldesk service links
Pharming - domain spoofing
QRL jacking - fake qr code tool QRTiger
Anti phishing toolbar:
- Netcraft
- PhishTank
Phishing simulation tool - OhPhish