CIPT (Certified Information Privacy Technologist) Practice

The primary characteristic of "Spear Phishing" attacks is targeted emails mimicking reputable companies. Spear phishing is a highly targeted form of phishing where attackers tailor their messages to a specific individual or organization. By mimicking reputable companies or individuals that the target is familiar with, the attackers attempt to gain the recipient's trust and trick them into revealing sensitive information or clicking on malicious links. This level of personalization sets spear phishing apart from general phishing attacks (option A) which involve indiscriminate targeting of a wide audience. Mass distribution of malicious software (option B) refers to malware attacks that are spread widely to as many targets as possible. Publicly shared sensitive information (option D) is not a characteristic of spear phishing attacks, as they aim to deceive individuals privately rather than relying on publicly available information.