If you've never received a 'phishing' email (and that's NOT an invitation to go 'fishing,' either!), then you're one of the lucky few!
If you have received email from a 'phisher' - asking you to visit a familiar website to verify or update personal information, then you NEED TO STOP - before you even respond or get thinking about your accounts, money, or anything else. DO NOT CLICK on ANYTHING within the email!
A phishing attempt/email might ask you to
* verify information at a common site you may use such as paypal, e-Gold, eBay, etc.
*upgrade for some special DEAL at any common site - an autosurf, traffic exchange, money exchange service, almost ANY KIND OF SITE!
*update your info
*update or provide your banking information
*update or provide your credit card number, social security or social insurance numbers, etc.
Often, you'll think that you recognize the business name mentioned in the email - and you'll think that everything must be okay - since the email mentions a company that you're familiar with.....
DON'T FALL FOR IT!
Don't clik on the 'take me there' link and - especially do NOT provide the information that the email asks you to give!
The link will only lead to a bogus website or other web location (blog, chatsite, forum, etc) that APPEARS TO BE the site you think it is, as described in the email. This site was created by someone whose sole purpose is to steal your personal information! The site may even look JUST LIKE the original...but be assured that it is NOT the site you think it is no matter how professional the site may look - no matter that is looks just like the one you've been led to think it is.
Phishing (pronounced as "fishing") is defined as the act of sending an email that falsely claims to the recipient that you are acting on behalf or that you own an established business. The "Phisher's" intent is to scam the recipient into surrendering their private information, thus, ultimately stealing the recipient's identity.
It is not alwayss as easy as you might think to spot an email send by a phisher who is phishing for information. At first glance, the email may look like it is from a legitimate company.
The "From" field of the e-mail may have the .com address of the company mentioned in the e-mail.
The clickable link even appears to take you to the company's website, when in fact, it is a fake website built to replicate the legitimate site.
Many phishers are professional criminals. They have spent a lot of time in creating emails that look authentic.
Users need to review all emails requesting personal information carefully.
When reviewing your email remember that the "From Field" can be easily changed by the sender.
While it may look like it is coming from a .com you do business with, looks can be deceiving.
Also - keep in mind that the phisher will go all out in trying to make their email look as legitimate as possible. They will even copy logos or images from the official site to use in their emails.
Finally, they like to include a clickable link that the recipient can follow to conveniently update their information.
How to check the legitimacy of a link:
Hover your mouse over the link - without actually clicking
Look to the bottom left-hand of your computer screen.
The website address to which you are about to be taken will show up in a small viewing area.
Finally, follow these three important rules:
* Never, ever, click the links within the text of the e-mail.
* Always delete such an e-mail immediately.
* Once you have deleted the e-mail, empty the trash box in your e-mail accounts as well.
If you are truly concerned that you are missing an important notice regarding one of your accounts, then type the full URL address of the website into your browser. Then find out through your safe members area if there was, indeed, some kind of request sent out - for you to update your details.
Saturday, April 21, 2007
Phishing Not As Great As Fishing
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment