The cybercriminal relies on the human factor ie the target of the attack (the human) to be unaware and uninformed of tactics used in phishing attacks.
Cybercriminals trick users and steal their money and/or private information in a number of ways.
One example is by registering a domain that has a misspelling or typographically mangled version of a legitimate domain to trick users who mistype the URL or do not look closely at email headers. If a user mistypes the domain they will be directed to a site that looks almost identical to the real website, which will be a modified version that lets attackers harvest credentials and steal funds once the it is opened.
Ross Widdows, Partner at Cyber Security Advisory, BDO Sydney, will discuss even more ingenious ways these cyber criminals attack and how to outsmart them.