PHISHING
Phishing
Phishing is a cybercrime in which a target or targets are contacted by email, telephone or text message by someone posing as a legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, banking and credit card details, and passwords.
The information is then used to access important accounts and can result in identity theft and financial loss.
Phishing Techniques :
There are a number of different techniques used to obtain personal information from users. As technology becomes more advanced, the cybercriminals' techniques being used are also more advanced.
To prevent Internet phishing, users should have knowledge of how the bad guys do this and they should also be aware of anti-phishing techniques to protect themselves from becoming victims.
1.Spear Phishing
2.Session Hijacking
3.Email/Spam
4.Phishing through Search Engines
5.Vishing (Voice Phishing)
6.Smishing (SMS Phishing)
7.Malware
8.Trojan
9.Malvertising
10.Ransomware
To know about these definition/information, click here ( phishing-techniques )
Common Features of Phishing Emails :
1.Too Good To Be True
2.Sense of Urgency
3.Hyperlinks
4.Attachments
5.Unusual Sender
Prevent Phishing Attacks :
*To protect against spam mails, spam filters can be used. Generally, the filters assess the origin of the message, the software used to send the message, and the appearance of the message to determine if it’s spam. Occasionally, spam filters may even block emails from legitimate sources, so it isn’t always 100% accurate.
*The browser settings should be changed to prevent fraudulent websites from opening. Browsers keep a list of fake websites and when you try to access the website, the address is blocked or an alert message is shown. The settings of the browser should only allow reliable websites to open up.
*Many websites require users to enter login information while the user image is displayed. This type of system may be open to security attacks. One way to ensure security is to change passwords on a regular basis, and never use the same password for multiple accounts. It’s also a good idea for websites to use a CAPTCHA system for added security.
*Banks and financial organizations use monitoring systems to prevent phishing. Individuals can report phishing to industry groups where legal actions can be taken against these fraudulent websites. Organizations should provide security awareness training to employees to recognize the risks.
*Changes in browsing habits are required to prevent phishing. If verification is required, always contact the company personally before entering any details online.
*If there is a link in an email, hover over the URL first. Secure websites with a valid Secure Socket Layer (SSL) certificate begin with “https”. Eventually all sites will be required to have a valid SSL.
10 Ways To Avoid Phishing Scams :
1. Keep Informed About Phishing Techniques
2. Think Before You Click!
3. Install an Anti-Phishing Toolbar
4. Verify a Site’s Security
5. Check Your Online Accounts Regularly
6. Keep Your Browser Up to Date
7. Use Firewalls
8. Be Wary of Pop-Ups
9. Never Give Out Personal Information
10. Use Antivirus Software
How Phish-Prone Are You?
Click here ( how-phish-prone-are-you )
Official Website of Phishing : www.phishing.org