Skip links

Phishing Phriday #6 – Tactics of Threat Actors Revealed!

Read more about Tactics of Threat Actors

Welcome back to our enlightening series, aimed at demystifying the digital underworld’s manoeuvres and fortifying your defences against cyber threats. In today’s exploration, we unravel the sophisticated techniques employed by cybercriminals, commonly referred to as “threat actors,” to execute phishing attacks. These digital deceptions are meticulously designed to compromise personal and organizational security. Let’s delve into the primary tactics these adversaries deploy and arm you with strategies to counteract them.

The Art of Pretexting in Phishing
Pretexting is a foundational tactic wherein attackers concoct scenarios to establish credibility and convince you of their identity. They might drop familiar names, reference specific systems you use, or pretend to be a colleague from another branch. This manipulation is not limited to personal interactions; digital breadcrumbs left across social media and websites can unwittingly aid attackers in crafting believable stories. The ease with which one can gather personal and organizational details online has significantly amplified the threat landscape.

The Power of Influence and Psychological Manipulation
Influence tactics exploit our subconscious reactions to perceived authority or familiarity. Digital impostors don clever disguises by mimicking official communication styles or using convincing digital credentials. They prey on our inherent respect for authority figures, leveraging uniforms in the physical world or signature blocks in the digital realm to manipulate emotions and decision-making. By creating scenarios of urgency or exploiting our desire to help, they aim to bypass our rational thinking and provoke impulsive actions.

Building Rapport: The Digital Con’s Finishing Touch
The final stroke in the threat actor’s playbook is establishing rapport. Offering help or evoking empathy, they strive to build a connection that encourages reciprocation. Whether through fabricated emergencies or promises of mutual benefit, they seek to earn your trust, tapping into the basic human inclination to engage with those we know, like, and trust.

Fortifying Your Defences Against Digital Deception
Understanding these tactics is crucial, but knowledge alone won’t safeguard you. Here are practical steps to enhance your digital resilience:

– Pause and Reflect: In the rush of our digital lives, taking a moment to scrutinize communications can make all the difference. If an email or request feels out of place, it probably is.

– Verify Independently: Always confirm the legitimacy of a request through separate channels. If someone claims to be from your bank, HR department, or any authoritative body, reach out to these entities directly using verified contact information.

– Educate and Stay Informed: Awareness is your best defence. Regular updates on the latest phishing schemes and participation in security awareness programs can significantly reduce susceptibility to attacks.

– Leverage Technology: Utilize spam filters, and antivirus software, and enable multi-factor authentication where possible to add layers of security against intruders.


The digital age has transformed the landscape of deception, granting cybercriminals unprecedented access to potential victims. By mastering the tactics of pretexting, influence, and rapport-building, they weave convincing narratives designed to exploit our innate tendencies. However, by staying informed, exercising caution, and embracing a culture of security, we can build a formidable barrier against these digital threats. Remember, in the realm of cyber security, a moment of caution can prevent a lifetime of regret. Stay safe, and see you in our next insightful session on navigating the complexities of online security.

Watch our most recent Phishing Phriday videos here

president tier 818x1024 1

Hi, I'm Jesse and I look forward to speaking with you.

An IT Support partner that you can trust.

I’m proud of the team we’ve assembled and the service they provide to our clients.  It’s because of them that we’re able to make a positive impact in our clients’ businesses and the communities we serve.

Our clients run businesses that depend on technology to operate but don’t have the expertise in-house to manage all the aspects of their Information Technology.  Our unique service delivery model is focused on a business first approach whereby we seek to understand what you’re trying to achieve, and how technology can help you move closer to those goals.  I’d love to connect with you to talk about how we might be able to help you improve the Stability, Security, Strategy, and Supportability of your network.