Glossary Term

Phishing

Phishing is a cyberattack that relies on social engineering to try to steal valid login credentials from unsuspecting users, in order to carry out illicit activity.

In a phising attack, the user is directed to a website or other infrastructure area that is cleverly designed to match a login prompt or other workflow that the regularly use, but that is actually controlled entirely by the attacker.

The user is then fooled into entering authentication credentials, as they assume that they are (for example) logging into a familiar account that they regularly use. In fact, upon entry the credentials are delivered instead to the attacker, who is then free to reuse them to enter the user's actual account, or any other accounts on which the user has selected the same username and password.

Most phishing today occurs by email, and takes the form of a warning, entreaty, or other call to action along with a link to a false copy of a familiar website.

2FA/MFA Rapid Reference

Authentication at a glance

Download the 2FA/MFA Rapid Reference now:

  • 2FA and MFA basics and common solutions
  • The benefits and drawbacks of each
  • Glossary of authentication terms

 

2FA/MFA Rapid Reference

  • 2FA and MFA basics and common solutions
  • The benefits and drawbacks of each
  • Glossary of authentication terms
Save PDF  

MORE DOWNLOADABLE REFERENCES

PDF

2020 Authentication Guide

Summary of authentication recommendations from major standards bodies, plus Plurilock’s own recommendations.
PDF

White Paper: Advanced Authentication

The state of authentication today—and why you need Plurilock products.
PDF

Understanding MFA vs. Privacy

Is multi-factor authentication always good for privacy? See why it isn't, and which strategies make the grade.
PDF

Behavioral Biometrics Guide

The definitive guide to behavioral biometrics, a core Plurilock technology.