Spoofing

Spoofing is the act of making a communication look like it came from a trusted source when it actually didn't. In email, this means forging the sender's address so that a fraudulent email appears to come from your CEO, a known vendor, or even you. It's the digital equivalent of putting a fake label on an envelope. Cybercriminals use spoofing to bypass mental alarms and, in some cases, simple email filters that only check the sender's domain. Spoofing is the foundational technique behind many BEC and Whaling attacks. The danger isn't the spoofing itself, but what the criminal does with the trust they've just created. They trick recipients into transferring money, opening dangerous attachments, or leaking sensitive data.