• Phishing – Cybercrime in which victims are contacted by
email, telephone or text message by someone posing as a
legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, banking and credit card details, and passwords. • Designed to trick you into clicking a link or providing personal or financial information • Often in the form of emails and websites The first phishing lawsuit was filed in 2004 against a Californian teenager who created the imitation of the website “America Online”. he was able to gain sensitive information from users and access the credit card details to withdraw money from their accounts. Other than email and website phishing, there’s also ‘vishing’ (voice phishing), ‘smishing’ (SMS Phishing) and several other phishing techniques cybercriminals are constantly coming up with. Claims to come from PayPal Includes PayPal logo, but from address is not legitimate (@ecomm360.net) Calls for immediate action using threatening language Is the name of the staff mailing list correct?
Does the displayed URL match the actual URL?
Examine the spelling, grammar and punctuation.
Do you know the sender?
There is no greeting
There is no salutation or signature
Examine the login page – is the logo familiar?
Who is requesting this information?
Is it someone who would normally request it?
Check for spelling errors
• Before you click, look for common baiting tactics • If the message looks suspicious or too good to be true, treat it as such • Install and maintain antivirus software on your electronic devices • Use email filters to reduce spam and malicious traffic • Be wary of messages asking for passwords or other personal information • Never send passwords, bank account numbers or other private information in an email • Do not reply to requests for this information • Verify by contacting the company or individual, but do not use the contact information included in the message