/
All Behaviours > SB156a Discloses credentials to a simulated phishing site
SB156a Discloses credentials to a simulated phishing site
Disclosing credentials to a phishing site places the individual and their organisation at risk of account compromises, malware and other cyberattacks. Even though the phishing site might be simulated, disclosure indicates that the individual may have been tricked by a cybercriminal to make a similar mistake on a real phishing site.
Why is it important?
Disclosing credentials to a phishing site places the individual and their organisation at risk of account compromises, malware and other cyberattacks. This is important as it is one of the biggest attack vectors being exploited currently.
Priority Tier
Behaviours in SebDB are ranked by their impact on risk. Tier 1 behaviours have the biggest impact, Tier 4 behaviours the least.
Risk Mitigated
Account Compromise
Account compromise happens when unauthorised people access them.
Data Leak
A data leak is when data is accidentally or intentionally disclosed to unauthorised people.
Data Theft
Data theft is the intentional stealing of data.
Further reading
https://www.cisa.gov/uscert/ncas/tips/ST04-014
https://www.cybertalk.org/2022/09/01/credential-phishing-prevention-best-practices-2022/