Phishing attacks are designed to steal personal information to
steal money. Typically, cybercriminals use ‘spoofed’ email
messages, phone calls, and websites to trick recipients into
revealing personal financial information (such as social security
numbers, credit card numbers, and passwords). Up to 5% of
recipients respond when trusted names of online retailers, banks
and credit card companies are used.