Details of a Spear Phishing attack

Source: The Register
Phishing is usually a game of large numbers: send enough email, and some of it is bound to hit the mark. An alternative approach, "spear phishing", involves obtaining information about your targets up front and sending carefully targeted email. This short article gives information on how a compromised university computer was used as a source of information to target members of that university's credit union in a spear phishing attack.