Many of you may be aware of phishing scams, but are you aware of all the different variants?

  • Phishing – "a form of criminal activity using social engineering techniques. It is characterized by attempts to fraudulently acquire sensitive information, such as passwords and credit card details, by masquerading as a trustworthy person or business in an apparently official electronic communication."
  • Spear Phishing – "Spear phishers will send e-mail that appears genuine to all the employees or members within a certain company, government agency, organization, or group. Whereas traditional phishing scams are designed to steal information from individuals, spear phishing scams work to gain access to a company's entire computer system."
  • Deep Sea Phishing – ???
  • Puddle Phishing – phishing attacks that are targeted at a small company or local businesses (local banks and credit unions.)

ZDNet Australia reports:

Alistair MacGibbon, Australian director of trust and safety at eBay, told delegates that Internet-based crimes are no different to crimes in the real world.

"We have phishing one day, spear phishing the next, deep sea phishing and puddle phishing. All of them are variations on a theme and none of them different to the other crime," said MacGibbon.