The use of the Internet to steal people’s personal details is called “phishing” (pronounced fishing). These thieves trawl the Internet “sea” for unsuspecting victims in order to trick them into revealing details to their bank, credit card or online payment system such as PayPal, or their login details for an online retailer such as eBay.
Typically they will send out a massive number of generic emails (or “spam”) asking you to update your credentials for your online services. Sometimes these emails will be made to look like they have come from the bank or credit card company etc. Making a false email appear to be legitimate is called “spoofing”. The email may convey a sense of urgency such as suggesting they’ve detected your account has been used in an out of the ordinary way and that you should log in immediately to check the transactions. Included in the email would be a link to a website which is desinged to look identical to that of your bank etc. - but it really belongs to the theif. When you enter your usename and password - bingo! They’ve got you.
Sometimes phishing emails will contain a small software program which will be installed on you PC without you knowing and will spy on your use of the Internet. The software can then record which websites you visit and what usernames and password you use to access them.
Do not become complacent about Phishing. The emails these thieves send out can appear to be very convincing and can easily deceive even the most experienced computer users.
Phishing Identity Theft
CBS News Report
When reading your emails keep in mind these five guidelines and they will help keep you safe from phishing:
Urgency or a threat to your account. Some phishing emails declare that the recipient’s account
has been billed or is in jeopardy and that authenticating information is required to keep the account from
being closed, suspended, billed or restricted.
Lost Information. Consumers should be wary of claims that a company is “updating” its files
or accounts. Companies such as banks, PayPal and eBay are not likely to lose account information.
Requests for personal information. Requests for a recipient to enter sensitive personal
information such as a user ID, password or bank account details by clicking on a link or completing an
email form should be treated with suspicion, even if the link takes you to a site that looks official.
Sender’s Address. You should never rely on the sender’s email address to validate the
true origin of the email. The “From” field of emails can be easily altered to disguise the true sender.
Links. Links that appear to connect to a particular site may be forged. Always open up a new browser window and manually type in the website address of your bank etc.
Click here for a free download of Spyware Doctor to help keep you safe from Phishing
