Phishing is a classic favorite attack of hackers. Not only that it provides easy access to victims’ accounts by merely tricking them to key in their credentials, the setup is also pretty easy to do.
This article will feature one of the tools that we found on GitHub – SocialFish.
It has always been a critical case to IT security practitioners to inform users of the danger of phishing. In an enterprise setup, IT security personnel need to raise awareness to all employees on how to spot a phishing attempt be it on their mailboxes or on websites that they visit particularly social media.
SocialFish shows how easy it is for cybercriminals to create dummy pages that mask themselves as legitimate websites. For some, it could be easy to identify the telltale signs of a fake website but what if they’re creative enough to lure you to enter your account information without you realizing that you are already taking their bait?
Such is the case in one of SocialFish’s phishing simulation wherein you can create a seemingly innocent page like a survey or poll site to gather whatever information that may be insignificant to you at first. But later on, as soon as you have already established that trust from your victims, you can have them sign up by using their social media accounts.
What Bunny rating does it get?
