2 Spoofing

Spoofing is when you make a fake or hoax of something, usually maliciously to trick the other party. Phishing is a type of spoofing where you might receive an email that appears to be from your bank but, in fact, it’s tricking you into giving the bad actor some piece of data they need. Phishing (faking an email from an organization or person you may have dealings with) is a form of spoofing. Often, social engineering attacks are forms of spoofing, such as vishing, which is a telephone call from someone pretending to be from your bank to trick you into performing some action. There are also many other types of spoofing, as we will see as we explore each of the cards in the Spoofing suit.

In this chapter, we’ll go through a series of ...

Get Threat Modeling Gameplay with EoP now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Threat Modeling Gameplay with EoP by Brett Crawley

2

Spoofing

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly