3 New Ways Phishers Are Hooking YouEver inventive, cyber-criminals who specialize in phishing scams are finding new ways to hook you and your personal financial information.
The days of amateurish phishing expeditions filled with typos are long gone. Itâ€™s our hope that by learning of the latest techniques, you can stay one jump ahead of this insidious scam.
In this ruse, the tired old phishing device asking recipients to â€œupdate their accountsâ€ is jettisoned in favor of a purported survey from a bank or other trusted business. Phishers sweeten the pot by promising participants a $5 bonus.
Those who fall for the â€œsurveyâ€ actually find themselves telling criminals their account number and PIN, which are then used to clean out their account.
Traditional Phishing relies on a scatter-gun approach: many thousands of e-mail users are contacted, in the hopes that a few will respond. The new phenomenon of spear phishing is much more selective. Criminals harvest the e-mail addresses of a small number of people â€“ perhaps only four or five â€“ who work for the same organization. Then, using a â€œspoofedâ€ e-mail address that looks like itâ€™s from the same organization, they send out a message purporting to be from the company HR or IT department.
Recipients are more likely to fall for spear phishing because they trust the sender, who appears to be a fellow employee. So many unhesitatingly reply with sensitive information such as computer passwords. Which, of course, is where the trouble begins.
In this con, phishers capitalize on the large number of mergers in the financial-services industry (there are about 1,500 each year). The idea is that a phishing e-mail seems more credible when it discusses a merger thatâ€™s actually in progress. Customers of Bank A are informed, for example, â€œWeâ€™re Bank B, and weâ€™re requesting your account number as part of the merge â€¦â€
Â© National Security Institute, Inc.
â€“ This article is the property of the National Security Institute and my not be copied or redistributed in any fashion without an appropriate licensing agreement. For more information and FREE samples, visit http://nsi.org/SECURITYsense2.html.