Be Aware of Phishing Scams!
If you use emails actively in your communication, you must have received various messages claiming to be from Ebay, Paypal and a number of banks. A recent email as if from U.S. Bank Corporation that I received contains the subject "U.S. Bank Fraud Verification Process" and in the body of the mail it says "We recently reviewed your account, and suspect that your U.S. Bank Internet Banking account may have been accessed by an unauthorized third party. Protecting the security of your account and of the U.S. Bank network is our primary concern. Therefore, as a preventative measure, we have temporarily limited access to sensitive account features. To restore your account access, please take the following steps to ensure that your account has not been compromised:". It continues with a link to a webpage, which looks very similar to original web page of the bank.
The misleading web site appears authentic with familiar graphics and logos. The wordings are professional right down to the legal disclaimer at the bottom of the page.
If you happened to be holding an account of the claimed bank, followed the instructions of the email and input your account, pin, password, etc. you are doomed. You just have handed over access to your account to a con artist, who, in a matter of days, will drain off all the money available in that account.
This new scam, which is proliferating in a very rapid pace, is called "Phishing". Phishing is a form of identity theft, where a con artist with the help of official looking email containing link to phony web pages capable of harvesting information, tricks an unsuspecting victim into divulging sensitive personal data. Scammers use these data to bilk victims out of their savings.
One of the most common phishing campaigns being waged has targeted users of Web auction giant eBay and its PayPal division with financial services giant Citibank serving as another popular target. However, recently, every major bank has been hit with this scam. Crooks send out huge amounts of emails with an expectation that some of these email address owners may have online access to their accounts at the bank.
The term "Phishing" is a deviation of the word "Fishing". In hackers' lexicon, in many words, "F" becomes "Ph". The term derives from the fact that scammers use sophisticated bait as they "fish" for users' personal information.
According to Gartner, a research firm, illegal access to checking accounts gained via phishing has become into the fastest growing type of consumer theft in the United States. Roughly 1.98 million people reported that their checking account was breached in one way or another during the last year and US$ 2.4 billion were defrauded from the victims!
Gartner also estimated that 57 million U.S. Internet users have received phishing emails and 3 percent of them may have fooled into revealing their personal sensitive information.
The Anti-Phishing Working Group has also spotted a dramatic increase in reports of phishing attacks in recent months. Since November, 2003 phishing scams increase by about 110 percent each month. In April alone, the group identified 1125 unique phishing scams, a sharp lift of 178 percent from the previous month.
MessageLabs, a company that watches phishing scams closely, has noted an even more dramatic increase in number of phishing emails. It claims to see phishing messages jump from just 279 in September, 2003 to a staggering 215,643 in March of 2004.
The scammers also started to use more sophisticated technologies in recent months. The latest generation of phishing scammers uses several methods to trick users, including pop-up graphics to mast the true web URL of the phishing site and the installation of Spywares and Trojans on victim's computer. The perpetrators also take advantage of security bugs in web browsers, in which the URL in the address bar appears to be for one site but is, in fact, a link to a totally different site.
A new Windows worm under the name "Korgo" is able to infiltrate into victim's system with a key logging Trojan, steal information that the victim input in web forms and secretly transmit to designated server. There are a number of variants of this worm and they are spreading rapidly. However, Microsoft in April came up with a patch to seal this glitch. Many computers without the patch are still vulnerable to this potentially dangerous worm.
A U.S. Treasury report provides consumers with steps to prevent and report phishing scams:
- Do not respond to or open any e-mail that warns that an account is about to be closed. Contact the company directly by phone and inquire of this e-mail.
- Do not submit financial information unless there is a symbol for a locked padlock on the browser's status bar. Also look for the https:// at the beginning of the Web address. If both of these signs are absent, the Web site is not secure.
- Always review your bank statement and credit card statements immediately upon receipt.
- Verify the domestic telephone number listed on the Web site through directory assistance or other reliable sources and call the number. Many phishing attacks have originated outside the U.S. and don't have a domestic number.
- Report suspicious activity or if you have been defrauded to the FTC and the FBI.
- Phishing e-mails can be forwarded to uce@ftc.gov. Complaints can be filed at www.ftc.gov. Phishing attacks can also be reported to the Internet Fraud Complaint Center at www.ifccfbi.gov.
Other cautionary measures you should take in order to protect yourself are:
- Since most of the phishing emails come through spam, get a spam filter and install on your computer.
- If you suspect a phishing attempt, report immediately to the bank. Every bank web site has a link or a toll-free number to report scams. Don't be ashamed if you were tricked into divulging account information. If you report it immediately, your account will be protected until you receive a new PIN.
- Change your password and PINs regularly. Banks advise that you use separate PINs and passwords for different accounts, that way if one gets compromised, your entire financial life won't be revealed. - If you are a frequent user of EBay, download its Web browser toolbar, a small program that runs with a user's Web browser. It flashes red when the user visits a possible spoof site. The toolbar uses a database of spoof site URLs, submitted by customers and is updated quite often.
- Check your computer frequently for possible Trojan virus.
About The Author
Nowshade Kabir is the founder, primary developer and present CEO of
|
|
|
|
|
|
|
|
Phishing-Based Scams: A Couple of New Ones
Phishing in its "classic" variant is relatively well-known. Actually, 43.4... Read More
Computer-Virus Writers: A Few Bats In The Belfry?
"Male. Obsessed with computers. Lacking a girlfriend. Aged 14 to... Read More
8 Surefire Ways to Spot an E-Mail Identity Theft Scam!
The E-Mail Identity Theft Scam is running Rampant. These E-Mail... Read More
Is My PC Vulnerable on the Internet?
No longer are viruses the only threat on the internet.... Read More
Message Board Security Problems
Security leaks can be a big problem for any site... Read More
Five Excellent Indie Encryption And Security Solutions You Have Not Heard About
Geek SuperheroGeek Superhero watches your computer for changes, immediately notifying... Read More
Free Spyware Removal - Its Not As Easy As It Sounds
Nobody wants to pay to remove spyware. At the very... Read More
The Never Ending Spyware Story
It's been with us since 1993, it's gotten more intrusive,... Read More
Internet Identity Theft - How You Can Shield Yourself
With the advent of the World Wide Web, a whole... Read More
Fishing for Fortunes. Scam!
Spelt phishing, but pronounced as above, this despicable act is... Read More
Virus Prevention 101
Blaster, Welchia, Sobig, W32, Backdoor, Trojan, Melissa, Klez, Worm, Loveletter,... Read More
7 Ways to Spot a PayPal Scam E-Mail
Paypal is a great site and is used by many... Read More
Watch Out For That Scam
The IFCC (Internet Fraud Complaint Center) received over 200,000 complaint... Read More
Dont Fall Victim to Internet Fraud-10 Tips for Safer Surfing
The Internet offers a global marketplace for consumers and businesses.... Read More
Spyware is Not Like a Nosy Neighbor
Remember the television show about the nosy neighbor Mrs. Kravitz... Read More
Road Warrior At Risk: The Dangers Of Ad-Hoc Wireless Networking
Airport Menace: The Wireless Peeping Tom As a network... Read More
Dont be a Dork ? Protect Yourself
There are folks out there who use their powers for... Read More
Web and Computer Security
Well, if that would have been said to me by... Read More
Eliminate Adware and Spyware
Everyone should eliminate spyware and adware from your hard drive... Read More
Protection for Your PC - Painless and Free!
Viruses, Bugs, Worms, Dataminers, Spybots, and Trojan horses. The Internet... Read More
Backup and Save your business!
There you are busily typing away on your PC or... Read More
Personal Firewalls - Secure Your Computer
There has not been a time in the history of... Read More
An Open Letter From a So-called Stupid
Someone recently told me, "You would have to be a... Read More
Top Spyware Removers Considerations
Only the top spyware removers are successful at detecting and... Read More
5 Tips For An Unbreakable Password
Despite the current wave of identity theft and corporate security... Read More
Dialing Up a Scam: Avoiding the Auto-Dialer Virus
For many, the daily walk to the mailbox evokes mixed... Read More
What to Look for before You Purchase Spyware Software
Huge number of spyware software applications are available in the... Read More
How To Be Your Own Secret Service Agency
So you want to know who your kids are chatting... Read More
Web Conferencing Readers - So What Do We Do with the PAYPAL SPAMMER
From: "Paypal Security" Subject: New Security Requirements Date: Tue, 26... Read More
Be Aware of Phishing Scams!
If you use emails actively in your communication, you must... Read More
Email Scams ? Ten Simple Steps To Avoiding Them
According to the Anti-Phishing Working Group (APWG) email scams also... Read More
SCAMS ? Be Aware ? And Report When Necessary
The Internet is a vast International Network of people and... Read More
Protecting Your Identity On The Internet
Afraid that someone is monitoring your PC or installed a... Read More
Personal Firewalls - Secure Your Computer
There has not been a time in the history of... Read More
Passwords or Pass Phrase? Protecting your Intellectual Property
Much has been said on the theory of password protection... Read More
Temporary Internet Files - the Good, the Bad, and the Ugly
A little bit of time invested into learning about internet... Read More
Reclaim Your PC from the Internet Spies
Viruses are, however, not the only malicious software programs out... Read More
Virus Nightmare..Lessons Learned
I got a virus the other day, Thursday I believe... Read More
Spy Scanners ? Don?t Compromise your Privacy
Spies, spyware, internet parasites are among what they are usually... Read More
3 Steps to Ending Scams and Virus Problems
Watching how the traditional media covers the latest virus or... Read More
Phishing
Recently I have received email from my bank/credit Card Company,... Read More
Detect Spyware Online
You can detect spyware online using free spyware cleaners and... Read More
Phishing ? Its Signs and Your Options
Phishing is the act of some individual sending an email... Read More
Web and Computer Security
Well, if that would have been said to me by... Read More
7 Ways to Spot a PayPal Scam E-Mail
Paypal is a great site and is used by many... Read More
Is That Free Stuff Like An iPod Or Desktop Computer Really Free?
Have you seen the web site, www.freestuff.com? Or have you... Read More
Blogs as Safe Haven for Cybercriminals?
To blog or not to blog? Well, why not? Lots... Read More
How to Know Whether an Email is a Fake or Not
A few nights ago I received an email from "2CO"... Read More
Phishing - Identity Theft & Credit Card Fraud
What is Phishing? Phishing is a relatively newly coined term... Read More
Reducing Fraudulent Transations ? 5 Simple Ways To Protect Yourself
The money being spent online is steadily growing. With billions... Read More
Firewalls: What They Are And Why You MUST Have One!
A firewall is a system or gateway that prevents unauthorized... Read More
Information Security for E-businessmen: Just a Couple of Ideas
If you constantly deal with bank or electronic accounts, it... Read More
Criminals are Fishing For Your Identity
What is Phishing? In a typical Phishing attack, a criminal... Read More
Adware and Spyware: The Problems and Their Solutions
The Threat10 years ago you could probably have run no... Read More
Do You Know What your Kids Are Doing Online?
It's a sad statistic, but hundreds of unsuspecting kids are... Read More
Firewall Protection - Does Your Firewall Do This?
The first thing people think about when defending their computers... Read More
Protecting Your Children On The Internet
If you are a parent, as am I, I think... Read More
Just Whos Computer is this Anyway?
Well, this is an article I never thought I would... Read More
IPv6 - Next Step In IP Security
IPv6, IntroductionThe high rate at wich the internet continualy evolves... Read More
Instant Messaging ? Expressway for Identity Theft, Trojan Horses, Viruses, and Worms
Never before with Instant Messaging (IM) has a more vital... Read More
Securing Your Accounts With Well-Crafted Passwords
In the past I've never really paid much attention to... Read More
Phishing - Learn To Identify It
Phishing: (fish'ing) (n.)This is when someone sends you an email... Read More
Its War I Tell You!
There are ways to insure security though. You can get... Read More
How Did This Happen to Me? Top 10 Ways to Get Spyware or Viruses on Your Computer
If you use the internet, you have probably been infected... Read More
Steganography ? The Art Of Deception & Concealment
The Message Must Get Through The year is 300A.D.,... Read More
Clown Internet Scam - An Internet Scam is Currently Targeting Clowns and Other Entertainers
I am the victim of an internet scam. It is... Read More
Internet Security |