Thursday, November 30, 2006

What is Phishing

Phishing is a form of Internet fraud that aims to steal valuable information such as credit cards, social security numbers, user IDs and passwords. A fake website is created that is similar to that of a legitimatorganizationon, typically a financial institution such as a bank or insurance company. An email is sent requesting that the recipient access the fake website (which will usually be a replica of a trusted site) and enter their personal details, including security access codes. ...

The latest phishing scam has to do with paypal. This phish is almost comically clumsy to the naked eye, and we're not here to analyze it seriously. The e-mail is extremely simple, composed only of text and no real attempt to make it look like it came from PayPal other than using a "service@paypal.com" address. The subject line of the email is: You have added a new e-mail address to your account. (normally this would freak you out if you had paypal as it would mean someone hacked you).

How to combat phishing schemes? The answer is ALWAYS the same! Never click on an embedded link in an email, especially one you didn't know was coming. So you ask, "how do I know then if my paypal (or bank or whatever) account was hacked. Launch a separate browser window, log in to your account and see what if anything has changed. I myself received this phish for the paypal account. It was about 2 weeks after we changed email addresses for the TimeWarner/Comcast buyout so I was confused. I just logged in to my paypaaccountnt and checked the email addresses. Simple. I never clicked on the link embedded in the email message.

Educate yourself about phishing at Phishing

No comments: