Summary  
This chapter covers implementing code for parsing and validating email sender addresses and URLs using string inspection and pattern matching to detect phishing attempts.

General domain of usage  
Email security

Watch this video for a clear overview of phishing attacks. You'll see real-world examples of phishing emails, learn how to recognize common tactics used by attackers, and discover practical tips to protect yourself from falling victim to these scams.

**Phishing** is a cyber-attack where attackers attempt to trick individuals into divulging sensitive information, such as login credentials or financial details, by posing as trustworthy entities through deceptive emails, messages, or websites.

### How to detect phishing

- **Check the Sender's Email Address**: verify the sender's email address, especially if the email appears unexpected or requests sensitive information;

- **Inspect URLs**: hover over hyperlinks to reveal the actual URL. Be cautious if the link address seems suspicious or differs from what's expected;

- **Look for Generic Greetings**: phishing emails often use generic greetings, lacking personalized information.




One notable phishing case is the **Google Docs phishing attack** that occurred in 2017.

Cybercriminals sent well-crafted phishing emails that appeared to be legitimate invitations to view a Google Docs document. The emails looked authentic and often appeared to come from someone the recipient knew.

Because the messages seemed to come from trusted contacts, the attack spread rapidly. As a result, many individuals, organizations, and businesses fell victim to the scam.

What is the primary goal of a phishing attack?

Explore the foundational concepts of cybersecurity and understand its role in protecting modern digital systems. Learn what cybersecurity is, examine different types of cyber threats, understand the basics of risk management, and discover why security is essential in today’s digital landscape.