Phishing, where a scammer sends an email that appears to come from a trusted source in order to trick recipients into clicking malicious links, has been around for quite a while now. Although phishing has become fairly well known, the scam continues to be a successful and widely used as a method of stealing bank credentials and other personal information.
Cyber security experts recently reported to the House Financial Services panel that criminals have tweaked their phishing tactics. Until recently, most phishing messages purported to be from a bank. But in the latest versions of this scam, the phony emails claim to be from the National Automated Clearing House Association, the Electronic Federal Tax Payment System, the U.S. Postal Service, private delivery firms, telecommunications companies and social networking websites.
According to testimony from the Financial Services Information Sharing and Analysis Center, phishing “remains the most popular attack method that criminals use to infect victims’ machines.”
To protect yourself from phishing scams, malware, and identity theft, follow these guidelines adapted from the Anti-Phishing Working Group:
- Be suspicious of any email that demands personal financial information. Call your bank directly to determine if they legitimately need information from you.
- Certain red flags can help you spot a phish, such as upsetting or exciting statements designed to elicit an immediate reaction.
- Phishing messages typically ask for usernames, passwords, credit card numbers, Social Security numbers, your date of birth, or other similar personal details.
- If you suspect that an email or chat message may not be authentic, or you don’t recognize the sender, do not click any links included in the message.
- If possible, avoid filling out any form within an email that requires you to enter personal financial data.
- Consider installing a toolbar in your Web browser to help protect you from fraudulent websites. These toolbars match compare online addresses against a lists of known phishing websites and will alert you before it’s too late.
- The latest versions of Internet Explorer, Chrome, and Firefox include optional anti-phishing protection.
- Check your bank, credit, and debit account statements regularly for any unauthorized transactions.
- If you notice any suspicious or unfamiliar transactions, contact your bank and/or card issuer immediately.
- Make sure to keep your browser up-to-date and install any necessary security patches.
Banks can help protect their customers by using iovation’s ReputationManager 360, which helpsbusinesses avoid fraud loss by detecting high-risk behavior and stopping cybercriminals in their tracks. The device identification and device reputation technology from iovation assesses risk as activities take place at various points within an online site, such as account creation, logging in, updating account information, attempting a purchase or transferring funds. These checks can be customized and fine-tuned to suit the needs of a particular business, detecting fraudulent and risky behavior in order to identify and block cybercriminals for good.
ROBERT SICILIANO, CEO of IDTheftSecurity.com is fiercely committed to informing, educating, and empowering Americans so they can be protected from violence and crime in the physical and virtual worlds. His "tell it like it is" style is sought after by major media outlets, executives in the C-Suite of leading corporations, meeting planners, and community leaders to get the straight talk they need to stay safe in a world in which physical and virtual crime is commonplace. Siciliano is accessible, real, professional, and ready to weigh in and comment at a moment's notice on breaking news.
- Criminals Prefer Pheasting on Phish Over Spam
Most of us are aware of spam, and while we may think it’s just an annoyance, what’s really dangerous about it is the fact that most spam are phishing attempts. Phishing is when cybercriminals attempt to fraudulently acquire your personal information, such as passwords and credit card details, by masquerading as a trustworthy person or
- 10 Ways To Prevent Phishing
Identity Theft Expert Robert Siciliano The Anti Phishing Working Group published a new report seeking to understand such trends by quantifying the scope of the global phishing problem, especially by examining domain name usage and phishing site uptimes. Phishing has always been attractive to criminals because it has low start-up costs and few barriers to entry.
- Phishing Alert: 10 Tips To Protect Your Business From Attacks
It’s becoming too easy for criminals to get their hands on your banking information, due to your employees’ ignorance of phishing scams. Malware attacks have soared recently, targeting banks for the purpose of stealing online banking information. Over 200,000 new infections occurred between July and September 2013—the highest jump in the past 11 years, according to
- Epsilon Breach Will Impact Consumers for Years
This week consumers are receiving messages from trusted companies such as 1-800-Flowers, Chase, Hilton HHonors and others, letting them know that their e-mail addresses have been exposed due to the recent Epsilon data breach. This provides a perfect opportunity for cybercriminals, who may try to take advantage of the breach to send out phishing e-mails
- How to Prevent Phishing Scams
Robert Siciliano Identity Theft Expert Recent reports abound of consumers email account being phished and American and Egyptian authorities arresting dozens of people in an online fraud crackdown for phishing scams. Its time to revisit the fundamentals of how to prevent phishing. Nobody can do this better than the Anti Phishing Work Group Phishing Defined Phishing is a
Leave a Comment
You must be logged in to post a comment.