Phishing is pronounced like “fishing”, is a term used to describe a malicious individual or group of individuals scamming users by sending e-mails or creating web pages that are designed to acquire sensitive information, such as usernames, passwords and credit card details. Normally, PayPal, eBay and online banks are common targets.
How to identify a phishing e-mail?
a) Identify the company
These types of e-mails normally are sent out to thousands of different e-mail addresses. Actually, the person sending these e-mails has no idea who you are. If you have no affiliation with the company the company the e-mail address is supposedly coming from, it's fake. For example: the e-mail is coming from Citibank but you bank at a different bank.
These types of e-mails normally are sent out to thousands of different e-mail addresses. Actually, the person sending these e-mails has no idea who you are. If you have no affiliation with the company the company the e-mail address is supposedly coming from, it's fake. For example: the e-mail is coming from Citibank but you bank at a different bank.
b) Checking spelling and grammar
Improper spelling and grammar is almost always an obvious error.
c) No mention of account information
If the company really was sending you information regarding errors to your account, they would mention your account or username in the e-mail. In the eBay example, the e-mail just says "eBay customer", didn’t mention you username and account number, if this really was eBay they would mention your username.
d) Deadlines
E-mail requests an immediate response or a specific deadline.
For example: the requirement to log in and change your account information within 24 hours.
e) LinksMany phishing e-mails will hide the true URL. Normally, the URL list in the email is not related to the company URL. For eBay example: http://fakeaddress.com/ebay is not an eBay URL, just a URL with an eBay section. If you're unfamiliar with how a URL is structured.
Below are examples of what a phishing e-mail may look like:
How to prevent the phishing?
a) Keep antivirus up to date and use anti-spyware software
Most antivirus vendors have signatures that protect against some common technology exploits.
This can prevent things such as a Trojan. Besides, installing an active spyware solution such as Microsoft Antispyware.
b) Do not click on hyperlinks in e-mails
Do not click any hyperlinks in an e-mail, especially from unknown sources.
c) Take advantage of anti-spam software
Anti-spam software can help keep phishing attacks at a minimum. A lot of attacks come in the form of spam. You can reduce many types of phishing attacks by using anti-spam software such a Qurb.
d) Firewall
Use a desktop (software) and network (hardware) firewall. It can prevent some malicious code from entering your computer and hijacking your browser.
No comments:
Post a Comment