Phishing is a method thieves used to get personal information from user in order to steal user identity and then user money or benefits-like bank account numbers, credit card numbers, passwords, passport numbers, etc. into forms on Web sites that are designed to resemble the bank, credit card, or other company who they are claiming to be. Phishing can be carried out in person or over the phone, and are delivered online through spam e-mail or pop-up windows. The e-mail messages, pop-up windows, and the Web sites they link to appear official enough that they deceive many people into believing that they are legitimate.
Example of a phishing e-mail message, (bank)
.png)
Misspelled Web addresses: When a Web site uses an Internet address (also called a "domain name" or "URL") that is similar to the Internet address of a popular Web site or is a common misspelling of popular Web site that could signify a phishing scam.
.png)
Methods avoid Phishing Attacks
1.Make sure your computer is updated and scanned regularly
(as scheduled or manually) with a corporate grade computer security suite.
2.Do not trust any e-mail that urgently requests personal information of any kind.
3. Phishing attacks often ask for personal financial information. Never fill out personal
information of any kind including passwords, usernames, social security numbers, credit card
numbers, and the like through a form on the Internet. A request of this kind should be a big
warning. Legitimate organizations generally do not ask you to verify username, password
except for an initial set up once in a while.
4.Always report suspicious activity to the business or organization being spoofed.
5.Update your anti-virus software frequently. Common anti-virus software includes McAfee and Norton.
6.Change your password every 60 days.
7. If you have any doubts about the authenticity of an email, do not respond; call the sender or
type in the web address.
8.Type addresses directly into your browser or use your personal bookmarks or favorites. If you need to update your account information or change your password for a site, visit the site by
choosing the bookmarked link from your Favorites list or by typing the URL directly into your
browser.
9. Don’t enter personal or financial information into pop-up windows. One phishing technique
launches a fake pop-up window when you click a link in a phishing e-mail message. Even if the
pop-up window looks official or claims to be secure, avoid entering sensitive information,
because there is no way to confirm that it is secure.
No comments:
Post a Comment