1. WHO
1.1. Korban
1.1.1. Siapapun yang memiliki alat komunikasi. Apalagi online.
1.2. Pelaku
1.2.1. Pelaku phising biasanya menampakkan diri sebagai pihak atau institusi yang berwenang. Dengan menggunakan website atau email palsu yang tampak meyakinkan, banyak orang berhasil dikelabui. Informasi data phising yang diperoleh bisa langsung dimanfaatkan untuk menipu korban.
2. WHEN
2.1. Kapan saja.
3. HOW
3.1. Email
3.2. Message/SMS (Smishing)
3.3. Website
3.4. Voice Phishing/Call
4. WHAT
4.1. Pengertian
4.1.1. Phishing is a cybercrime in which a target or targets are contacted by email, telephone or text message by someone posing as a legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, banking and credit card details, and passwords.
4.2. Contoh
4.2.1. Email phishing. Most phishing attacks are sent by email.
5. WHERE
5.1. Everywhere. mostly online.
6. WHY
6.1. Mengapa korban bisa dikelabui?
6.1.1. Dijanjikan hal-hal yang menguntungkan.
6.1.2. Kondisi terdesak.
6.1.3. Kepencet?
6.2. Mengapa pelaku mengelabui?
6.2.1. Opportunity
6.2.2. Pressure
6.2.3. Rationalization
6.3. Mengapa disebut phishing?
6.3.1. The word phishing was coined around 1996 by hackers stealing America Online accounts and passwords. By analogy with the sport of angling, these Internet scammers were using e-mail lures, setting out hooks to "fish" for passwords and financial data from the "sea" of Internet users.