3103/2025/WEB ‘Investigating phishing attacks: practical techniques & case-driven insights‘

The webinar aims to explain the fundamentals of phishing and highlight practical methods for investigating phishing operations. It covers the structure of phishing kits, typical roles within phishing ecosystems, and common exfiltration techniques. 

Participants will see how to analyse phishing pages, identify related infrastructure, determine how stolen data is collected, and trace possible links to criminal actors, supported by case examples drawn from real investigations.

By the end of this webinar, the audience will be able to:

• Describe current trends, criminal roles, and the PhaaS ecosystem;
• Understand phishing kits, including phishing kit discovery & intelligence extraction;
• Identify victims and stolen data flows;
• Understand technical analysis of phishing resources;
• Follow infrastructure mapping for criminal investigations.

EMPACT training activity

Combatting new forms of organised crime requires more cooperation between police and gendarmes, customs officers, border guards, judges, and prosecutors. EU institutions, agencies and Member States work together to tackle organised and serious international crime through a permanent and key instrument: the European Multidisciplinary Platform Against Criminal Threats (EMPACT).

CEPOL plays a crucial role in the EMPACT mechanism through the provision of specialised training and the identification of training needs within each common security threat. Every year, CEPOL provides a comprehensive training package for each common EU crime priority consisting of onsite, online and exchange training activities.

Check more of CEPOL's EMPACT training activities here.