It is the threat of phishing and it sounds like fishing because the term derived from there and in logic too. Like fishing there is a bait and there is an ignorant fish and in real life there is a bait and there is YOU.
How phishing work is simple, a person create a website or sent you an email asking you to type in sensitive information usually in return for a service e.g security update, getting bonuses and even ridiculous things like to help saving the website(omg, if the company is failing no enough email will be able to sustain it).
You might say that hey i am not stupid! I will never fall for these tricks ever!
Well, Then most likely they are smarter you. They grab pictures, logos of the company to "camouflage" it making it look as official as possible. A completed phishing email may look something like this.
Woah looks convincing,
Ok so the scenario start
You recieve the msg on the day at work and you are think heck! i got ban and try to follow the information below to get started.
You look at the link in the email thinking that its the correct link. (Officially it is the correct link) So it will be safe to go and submit the information. You clicked entered this page and try to type in your user, true enough you cannot log in. Comment : Why? Because the link for this page is fake, there is not database that have your user in it Yet..
Thus you try to create a new account on the "Ebay" site entering your credit card number and your bank account by clicking the register button over there. You might be thinking that everything looks ok and real hey! they even have the Trust thingy there. Comment : People can fake alot of things, that is just a picture that links to the offical site and have no function whatsoever on the website after you submit the information, the phisher will get his needed information and with any luck he will have a extra big bill for you to pay by the end of the month :D
Tips on fighting phishing.
Never click on links
Links can be faked to look like real. Example the link on the eBay email, it seems correct however when you click on it, it brings you to a page which looks like the official eBay and from here you are already inside the phishing website. Check the links before you click them, mostly when you right click on the link and check the properties it will show you where it really goes. Make sure that it is the official link/site
example of a fake link www.yahoo.com :D
Call up the necessary organisation or email them if in doubt
If you receive any emails which create anxiety and demand immediate action, it will properly be a phishing bait and the best way to deal with it is to get in contact with the official corporation. Make sure the telephone number and website is official before you do these, there are phone phishing too but i will not talk about that.
Never send sensitive information out
No business corporation will ask for you to sent credit card information/password or bank accounts via email. NONE because there is such a thing called a server and a backup server. Do not reply these messages.
If things are too good to be true it often aint
There is not free lunch in this world ever, if you recieved an email stating that you have recieved a 1000million dollar lucky drawn from a secret sandhole and expect you to give them your bank account or credit card number and pay a sum of money for the transaction. FAKE!.
Check the letter
Official letter often provides you with your name, they dont greet you are sir or mdm and also the sender's name and how to contact the him/her. If there aint any of these most prob is an automated email and automated email are usually just comfirmation letters which requires no action to deal with. However if the letter causes anxiety and demand immediate action which in the case might be proberbly very important it is a fake because companies do not sent out important letters automatically.
The pictures are taken from some guy, its not mine. :) thanks whoever he is
No comments:
Post a Comment