How to Prevent Phishing

With our free hands-on tutorial, you'll learn about the many types of social engineering — baiting, phishing, spear phishing, vishing, and pretexting — and how to prevent these kinds of attacks.

Why learn how to prevent phishing?

Learn how to prevent phishing for free

Learn the fundamentals on your schedule and at your own pace.

Better protect your information

Phishing is an extremely popular form of social engineering attack — learn how to better protect your information.

See if cybersecurity is right for you

These lessons are the quickest way to get real hands-on experience and to learn the basics you'll need to get into our immersive cybersecurity engineering course.

Our grads work at some of tech's biggest companies

Washington Post logo
Salesforce logo
Spotify logo
Facebook logo
slack logo
Logo: Apple
Logo: NASA
Logo: Google
Logo: AT&T

How to prevent phishing: what you'll learn

Preventing phishing attacks isn't easy. Even the most vigilant email users can fall victim to this social engineering technique. In this free lesson, you'll get an introduction to social engineering and learn how to protect personal information like social security numbers, credit card numbers, and passwords.

Phishing exercises

Learn how some companies are hiring penetration testers to fight phishing attacks and educate employees.

How to identify a phishing scam

Preventing a phishing scam starts by recognizing suspicious emails — learn the social engineering tactics to look out for.

Different types of phishing

In addition to phishing, social engineering can come in the form of vishing, baiting, and pretexting — learn about each of these techniques and how to protect yourself and others.

Other free cybersecurity tutorials at Flatiron School

Cybersecurity is one of the fastest-growing sectors of the tech industry. But there’s a skills gap – employer demand is rapidly outpacing the supply of highly trained cybersecurity professionals. If you're looking to join the cybersecurity industry, Flatiron School's Cybersecurity Engineering course teaches you everything you need to know to become a cybersecurity professional.

Introduction to Virtualization

Learn about virtualization technology and how it enhances information security.

Learn Virtualization

Introduction to Cryptography

Learn how to keep your communications secure using cryptography techniques like encryption.

Learn Cryptography

Understanding IoT Security

Learn about the Internet of Things and how WiFi-enabled devices can leave you vulnerable.

Learn IoT Security

Ready for a career in cybersecurity? Learn more about our immersive cybersecurity course.
Learn More

Frequently asked questions about how to prevent phishing attacks

What is phishing?

Phishing refers to an attempt to get a trusted user to betray sensitive information for profit or to gain access to more secure parts of a network. Typically, the desired information includes usernames, passwords, credit card numbers, bank account information, or other important data to utilize or sell.

By masquerading as a reputable or trusted source with a credible request or an enticing offer, an attacker lures in the victim to trick them, in the same way a fisherman uses bait to catch a fish. Anyone with an email account has experienced phishing being carried out through email.

What is social engineering?

Social engineering is the use of deception to manipulate users into divulging confidential or personal information that may be used for fraudulent purposes.

What is a social engineering attack?

There are several techniques used in social engineering attacks including baiting, phishing, spear phishing, vishing, and pretexting. The attacks look like normal activity to build trust with the intended victim. The information gained from a successful social engineering operation may get the attacker the information or access they desire, or may simply help them to breach a further layer of security in a well-layered security environment.

What are phishing emails?

A phishing email is usually when someone sends an email that appears to originate from a reputable source with an enticing request. The attacker lures the victim in by inspiring confidence and then tricks them into providing sensitive information.

What is a phishing attack?

A phishing attack is when someone posing as a reputable source sends you an email attempting to gain private information about you or your organization.

Who should learn about social engineering?

Everyone should learn about phishing to avoid becoming a victim of an attack. Knowing what to look for can also help prevent phishing attacks against companies. Cybersecurity professionals may be called upon to train others to recognize phishing attacks.

Is How to Prevent Phishing really free?

Yes, How to Prevent Phishing is entirely free, just like the rest of our tutorials.

If you want to learn how to prevent phishing attempts and becoming a victim of phishing, this is the perfect place to start your education.

What courses and workshops does Flatiron School offer?

Flatiron School teaches students the skills they need to become a software engineer, data scientist, cybersecurity engineer or analyst, or product designer.

If you're looking to start a new career, those are the courses for you.

We also offer free introductory experiences for beginners in coding, data science, and cybersecurity.

Free tutorials:


Data Science