Secure 0118 359 2220 Get Started

Press ESC to close or Enter to search

Popular Pages
Managed IT Cyber Security Case Studies Pricing Contact
Home
About Us
Services
Managed IT Services Cyber Security & Compliance Microsoft 365 Cloud & Hosting Backup & Disaster Recovery Connectivity & Telephony Incident Response & 24/7 IT Support Reading
Pricing
Tools
Domain Health Check About You Password Generator
Resources
Case Studies Threat Intelligence Blog & Insights Guides FAQs Customer Portal Remote Support
Contact
Get Started
Live Security Feed
Your IPDetecting...
NCSCUK organisations urged to strengthen cyber defences ALERTPhishing attacks targeting Microsoft 365 users on the rise CISACritical vulnerabilities identified in popular software NEWSRansomware groups increasingly targeting SME businesses NCSCNew guidance released for securing remote workers ALERTBusiness email compromise attacks cost UK firms millions CISAZero-day exploits require immediate patching attention NEWSAI-powered threats becoming more sophisticated in 2025 NCSCUK organisations urged to strengthen cyber defences ALERTPhishing attacks targeting Microsoft 365 users on the rise CISACritical vulnerabilities identified in popular software NEWSRansomware groups increasingly targeting SME businesses NCSCNew guidance released for securing remote workers ALERTBusiness email compromise attacks cost UK firms millions CISAZero-day exploits require immediate patching attention NEWSAI-powered threats becoming more sophisticated in 2025
View Dashboard

Barrel Phishing

Attacks

Two-stage phishing where initial harmless contact builds trust before delivering the malicious payload.

Barrel phishing (also called double-barrel phishing) is a multi-stage attack where the first email is benign—establishing contact and building trust—before a follow-up email delivers the malicious payload. The initial email might ask an innocent question or reference a legitimate topic. Once the victim responds, establishing rapport, the attacker sends a second email containing the malicious link or attachment. This approach bypasses suspicion triggered by unsolicited requests.

Why It Matters

The DSC Perspective:

Barrel phishing defeats the 'don't click links from strangers' advice because the second email comes from an established contact. Awareness training should cover this technique and encourage verification of unexpected requests even from known contacts.

Related Terms

Phishing Social Engineering Spear Phishing