Phishing Guidance: Stopping the Attack Cycle at Phase One

Publish Date

October 18, 2023

Read CISA Blog on Phishing, What's in a Name

Related topics:

Cybersecurity Best Practices

This guide was created by the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) to outline phishing techniques malicious actors commonly use and to provide guidance for both network defenders and software manufacturers. Phishing Guidance: Stopping the Attack Cycle at Phase One contains guidance for network defenders, applicable to all organizations, and for software manufacturers that focuses on secure-by-design and -default tactics and techniques. Additionally, the guide contains a section tailored for small and medium-sized businesses to aid in protecting their cyber resources from evolving phishing threats.

Resource Materials

Phishing Guidance - Stopping the Attack Cycle at Phase One_508c.pdf (PDF, 777.46 KB )

Phishing Guidance: Stopping the Attack Cycle at Phase One

Resource Materials

Tags

Secure by Design Alert: Eliminating Directory Traversal Vulnerabilities in Software

Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

CDM Data Model Document 4.1.1

Understanding and Responding to Distributed Denial-Of-Service Attacks

Phishing Guidance: Stopping the Attack Cycle at Phase One

Resource Materials

Tags

Related Resources

Secure by Design Alert: Eliminating Directory Traversal Vulnerabilities in Software

Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity

CDM Data Model Document 4.1.1

Understanding and Responding to Distributed Denial-Of-Service Attacks