Phishing Attack Results
Most people assume that the most damaging attacks are usually the attacks where a victim gives away their bank account or credit card information. By all means, if a phishing attack manages to capture bank account and credit card information, its definitely a success but to a phisher, even small victories count.
Trusteer, a security firm found that 73% of of users on the web use their bank password for everything. The chances that a social network site's password and the victim's bank account password are the same is tremendous. Bank accounts, credit accounts, social network accounts, insurance accounts, and whatever else a phisher can access can also lead to them gathering enough information to steal a victim's identity!
Phishing attacks are constantly evolving but the core method is still the same. I'll revert back to my fisherman analogy. Fishermen can use the most high tech equipment such as spinning reels, laser sights, motion detectors, sonar, or they could use the most simplest technologies such as rods with strings, but the end goal is the same, send out bait and earn back a catch. Phishing is the exact same idea, they can use the most advanced attacks such as fake websites, and fake pop-ups or they use the most simplest method such as e-mails, but the end goal is to send out bait and hook in victims. The big difference being the catch.
To a fisher, the big catch is the fish.
To a phisher, the big catch is you.