Why hackers choose "phishing" ?

"Humans are more vulnerable to Attacks"

Phishing is a type of Social Engineering Attack. It is the easiest way to hack and get hacked.

The reason why this attack is more dangerous is its simplicity.

FROM ATTACKERS POINT OF VIEW:

• No need to create much complicated applications or programs
• A simple email with a "poisonous" site link will do the work
• People easily click on the links if it is related to offers, loans, Gifts etc.
• Instead of hacking whole security system of a company, an employee vulnerable to this attack is more than enough.
• To create a mail and sent to all is a simple job. but more powerful one since one in every thousand will definitely click the link even if they are aware of phishing.

HOW TO IDENTIFY A PHISHING EMAIL?

• Unfamiliar email address with familiar names. Example: amaz0nlndia@amzn.com
• Common salutation will be used in most cases except for " spear phishing" which is a targeted one
• Sense of urgency in the mail. The content will make us to click on the link at the earliest since it will contain any end date, caution, warning 
• Sometimes the grammar, content type etc. may be different from normal mails.
• Spelling mistake or grammar mistakes
• A link with same front page but different URL. Like the page will look like Facebook / bank login page, but URL will be different.
• Attachments with .exe extension but word or pdf icon.