Phishing
A social engineering attack that uses fraudulent emails, text messages, or websites to trick users into revealing sensitive information such as passwords, credit card numbers, or personal data. Phishing remains the most common initial attack vector.
Information SecurityRelated Frameworks
Frequently Asked Questions
What is Phishing?
A social engineering attack that uses fraudulent emails, text messages, or websites to trick users into revealing sensitive information such as passwords, credit card numbers, or personal data. Phishing remains the most common initial attack vector.
Why is Phishing important for compliance?
Phishing is a key concept in Information Security. Understanding phishing helps organizations meet regulatory requirements, reduce risk, and demonstrate due diligence during audits. Our compliance platform covers this concept across 692 frameworks with 819,000+ control mappings.
Where can I learn more about Phishing?
Explore our compliance framework pages to see how phishing applies across different standards and regulations. Our implementation guides provide step-by-step guidance, and the compliance platform offers AI-powered analysis of how this concept maps across 692 frameworks.
See how Phishing applies across compliance frameworks
Our AI-powered platform maps 692 frameworks with 819,000+ control connections. Explore how this concept is addressed across standards.