|
Help Desk
|
Phishing is the latest security issue since spyware and
malware that is increasing in prominence and infection rates more
dramatically since email viruses.
"Phishing attacks use 'spoofed' e-mails and fraudulent websites designed
to fool recipients into divulging personal financial data such as credit
card numbers, account usernames and passwords, social security numbers,
etc. By hijacking the trusted brands of well-known banks, online retailers
and credit card companies, phishers are able to convince up to 5% of
recipients to respond to them." (Source: Anti-Phishing Working Group)
Phishmail (email sent from a phisher) looks exactly like an email you
would receive from a bank, an auction website or your internet provider.
Usually, the email states that they have had a problem with their
computers and that they ask you to update your details on their website.
Here are some tips on avoiding being "phished":
 | Check the email for bad spelling, grammar errors or
strange formatting. |
| If you do receive an email from a source that asks
you to update your details, do not use the links in the email. Open your
web browser and type in the website address yourself. |
| Contact the bank itself to see if it actually issued
the request to update your details. |
| Don't send any personal financial information via
email. |
| Make sure you are in a secure website by checking the
website address starts with "https" and the padlock appears in the
status bar. |
| To find out the actual address of a website, type
javascript:alert("Actual URL address: " + location.href); into your
address bar. |
If you think that you may have already been a victim of
phishing, contact your bank and inform them of the possible breach of your
account. You may also like to forward the phishmail to the company that
the phisher tried to pretend to be. Please also
see
Be Wary of Phishing - Part 2 for more
information.
|
