Taken from: Dailybits.comAccording to Wikipedia, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication.
Phishing often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. One of the example as below:
Taken from: netforbeginners.about.com Let me ask you a simple question: Will you give your bank account password or email password to everyone? It's definitely NO!! So, do i.
So, since it's impossible for the phisers to get it fromyou, they have no choice but to take extra steps to trick us into giving up all those important and private information. This kind of deceptive attempt to get information is called social engineering. It is exactly same as an act of manipulating people into performing actions or divulging confidential information.
Another example is Suppose you check your e-mail one day and find a message from your bank. You've gotten e-mail from them before, but this one seems suspicious, especially since it threatens to close your account if you don't reply immediately. What do you do? You should not straight away give your personal information to the suspicious site. Instead, you can call your nearest bank to inquire about that. Calling to make a clarification is better than lossing all your valuable information, especially password to all those phisers.
Most phishing messages will tend to prompt the victim to reply promptly. If he/she doesn't want to lose the money/kicked out by certain account, they will just straight away reply the phishing messages, and there it goes.. the information and data are all collected by the mastermind of phisers. If you are lucky, you can recognize that you didn't purchase anything from that particular site and you won't prompt a reply to them. However, if you are one of the shoppers from particular online store, and coincidently you just purchased an item from there, you will likely assume that it was specially dedicated for you. So some of us who are vulnerable to it will reply before investigating.
According to ACP Mohd Kamaruddin Md Din, head of Cyber and Multimedia Investigation Division, in Malaysia, no one has been arrested for crimes related to e-mails although 40 people have been arrested for the SMS scams. Kamaruddin says the syndicates involved in these crimes have dedicated tasks for each member. Normally, the phishing happened where one member would be tasked to send out SMS, while another member would be in charge of checking the accounts
There is a news of "Phish,Your Money Gone", where a 34-year-old executive of an oil and gas company received an e-mail last September purportedly from her bank, asking her to update her account because it was upgrading its server.Without hessitation, she entered all her details, and few days later, she lost RM4100. The message tend to look genuine, and it's really hard to tell that the website is fake, especially for her who only use Internet for working purposes. Hence, it is really important for the banks with the help of the police to set up a special unit and seek the help of Interpol to trace the fraudsters.
Here is one of the site where i found very interesting, you can start a QUIZ to test how well are you in recognizing all those Phisihing and Spam mails.
No comments:
Post a Comment