Phishing awareness: 5 tips to help you understand phishing emailsOrhan Sari
Phishing awareness: Use Keepnet Labs Awareness Educator for free to avoid social engineering schemes.
What is phishing?
Phishing is an endeavour that aim at manipulating you into thinking a legitimate organization is demanding information from you. These demands can seem safe on the surface or may seem to come from a valid source. These scams require you reply to an email, respond to a request on the phone, or click on a link to a phishing website.
When phishing attempts launched by email, they often give clear signs that the request is not legitimate. Links in email to fake pages often take you to a website that look very similar to the legitimate service. This services may vary depend upon cyber criminals research on you, such as banks, e-wallet accounts, email and social networking accounts. Sometimes, cybercriminals phishing emails to multiple addresses randomly in hope that one answer will be enough. However, sometimes phishing attacks targets specific individuals which is called spear phishing.
Phishing awareness: 5 tips to help you understand phishing emails
Online forgery is a very broad topic with many methods such as theft of credit card, seizure of banking credentials,, hacking of social media accounts, and the implementing malware on computer systems. Email phishing is a way of doing this. There are some tips that help you understand phishing emails and develop your phishing awareness:
the URL in a phishing message in your inbox may seen perfectly legitimate. However, if you put your mouse over the URL without clicking it, you can see the redirection page (hyperlinked address). If the URL address in your inbox is different from the address hyperlinked, this is will be a phishing email.
In phishing emails, cybercriminals use different domain names from the legitimate source. When you look at the last part of a domain name, you can see the domain is different from the original.For instance, while the domain name www.keepnetlabs.com the original name of the page, www.keepnetlabs.pearlyn.com would be the fake address.
Poor spelling and grammar
A message with poor grammar or spelling mistakes will probably be a phishing scam. Institutional messages are usually reviewed, and one cannot find any spelling, grammar mistakes.
An official institution never demands your password, credit card number, or the answer to a security question on email. Beware of such messages.
Beware of the message content
If you get a message informing you that you have won a lottery, you have never bought, it then is a scam. Also, if the message makes unrealistic threats, or demands money, it will be a scam.
Avoid phishing scams
Never hand over your credentials such as passwords, and sensitive information like bank account numbers etc.
Do not click on the link in emails, instead type down the address on your browser.
Avoid suspicious email attachments or links. If necessary, verify the sender.
Check the web address any private information Find ‘https://’ and padlock icon in the address.
Update your entire system, and use an updated antivirus solution.