Gray Hat Security (GHS) logo

Threat Intelligence · Phishing · Social Engineering

Phishing Attacks Targeting Saudi Employees: Real Examples & How to Spot Them

June 24, 2026 · 7 min read · GHS Security Team Phishing BEC Social Engineering

Quick Answer

The four most prevalent phishing attack types targeting Saudi employees are: fake Absher / government portal credential harvesting, Business Email Compromise (BEC) targeting finance teams with fraudulent wire transfer requests, GOSI / HRDF smishing stealing banking details via SMS, and AI voice cloning (vishing) using synthetic executive voices.

All four rely on urgency, authority impersonation, and Saudi-specific context to bypass employee skepticism. The single most effective defense is a culture of verification — always confirm out-of-process requests through a known, independent channel.