Phising: Examples and its prevention methods
“Phishing” is a term use to describe a criminally fraudulent process of attempting to acquire sensitive information such as usernames,
passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Phishing is typically carried out by e-mail or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. PayPal, eBay and online banks are common targets.
CITIBANK – victim of phishing
In year 2004, a Citibank phishing email began making the rounds via email in Malaysia, warning Citibank customers of possible fraud affecting their accounts and urging them to login to check the status.
So how to spot a phishing scam? I will use Citibank as the example to illustrate the steps can be taken to spot a phishing scam.
Phishing e-mails will contain some of these common elements: (view screen capture above from Eudora)
1. The "From Field" appears to be from the legitimate company mentioned in the e-mail. It is important to note, however, that it is very simple to change the "from" information in any e-mail client. While we're not going to tell you how, rest assured it can be done in a matter of seconds!
2. The e-mail will usually contain logos or images that have been taken from the Web site of the company mentioned in the scam e-mail.
3. The e-mail will contain a clickable link with text suggesting you use the inserted link to validate your information. In the image you will see that once the hyperlink is highlighted, the bottom left of the screen shows the real Web site address to which you will go. Note that the hyperlink does NOT point to the legitimate Citibank Web site URL.
Prevention methods:
•Never reply to e-mail message that request your personal information.
•Don’t click links in suspicious e-mail, the link might not be trustworthy.
•Use the strong or different password for each of your accounts & change them frequently.
•Don’t send personal information in regular e-mail messages.
•Do the business only with companies you know & trust.
•Help protect your PC, keep your PC updated & use antivirus software.
•Monitor your transaction, using just one credit card for online purchases makes it easier to track your transactions.
•Use credit cards for transactions on the internet instead of debit cards to avoid the big credit limit from your bank account.
Related Links
www.webopedia.com/TERM/P/phishing.html
“Phishing” is a term use to describe a criminally fraudulent process of attempting to acquire sensitive information such as usernames,
passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Phishing is typically carried out by e-mail or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. PayPal, eBay and online banks are common targets.CITIBANK – victim of phishing
In year 2004, a Citibank phishing email began making the rounds via email in Malaysia, warning Citibank customers of possible fraud affecting their accounts and urging them to login to check the status.
So how to spot a phishing scam? I will use Citibank as the example to illustrate the steps can be taken to spot a phishing scam.
Phishing e-mails will contain some of these common elements: (view screen capture above from Eudora)
1. The "From Field" appears to be from the legitimate company mentioned in the e-mail. It is important to note, however, that it is very simple to change the "from" information in any e-mail client. While we're not going to tell you how, rest assured it can be done in a matter of seconds!
2. The e-mail will usually contain logos or images that have been taken from the Web site of the company mentioned in the scam e-mail.
3. The e-mail will contain a clickable link with text suggesting you use the inserted link to validate your information. In the image you will see that once the hyperlink is highlighted, the bottom left of the screen shows the real Web site address to which you will go. Note that the hyperlink does NOT point to the legitimate Citibank Web site URL.
Prevention methods:
•Never reply to e-mail message that request your personal information.
•Don’t click links in suspicious e-mail, the link might not be trustworthy.
•Use the strong or different password for each of your accounts & change them frequently.
•Don’t send personal information in regular e-mail messages.
•Do the business only with companies you know & trust.
•Help protect your PC, keep your PC updated & use antivirus software.
•Monitor your transaction, using just one credit card for online purchases makes it easier to track your transactions.
•Use credit cards for transactions on the internet instead of debit cards to avoid the big credit limit from your bank account.
Related Links
www.webopedia.com/TERM/P/phishing.html
www.webopedia.com/DidYouKnow/Internet/2005/phishing.asp
But sometimes it is very hard to prevent it. have to be aware of it
ReplyDelete