Awareness / Link Clicked in Email

Description

Clicking a link in a phishing email can be a vulnerability, as it is possible that malicious actors have prepared websites with zero-day vulnerabilities for browsers, mailing clients, or programs connected to the email client, which could compromise the user's security and privacy. Also, phishing emails can be sent to trick the user into revealing confidential information.

Risk

Leaking information from a browser can also be a potential vulnerability. If a malicious actor is able to gain access to a zero-day vulnerability or enable user-side tracking. Therefore, it is important to ensure that email software, browsers, and programs associated with the email client are regularly monitored for suspicious activity and are always up to date.

Solution

Users should not click on links in malicious phishing emails and always use up-to-date software. This applies to browsers, especially those that are connected to the email program.