The Dangers of Phishing
by Tony Quallen
 |
Before you go and grab your rod, tackle box, and tacky hat, you should take a closer look at your email. Hackers have devised a tactic where you are the fish and their electronic messages are the bait. Just like in real fishing, the bait looks surprisingly similar to the real thing. In this case, instead of a worm, it is email from a financial institution or some other notable company. |
Everyone has gotten a few of these email messages disguised with the subject, "Your account has been suspended" or "We need to verify your password." These subject lines coupled with a spoofed (i.e., simulated) return address of Administrator@ebay.com, Admin@5/3.com, AccountsDept@(your bank).com can make things really confusing for the untrained "fish." Further, the messages themselves often contain logos, and trademarks that add to the deception.
When trying to determine if email is authentic or not, remember one very important detail: no company will ever send you email requesting your username or password. Upon signing up for an account on various web sites you will see a note, usually highlighted in bold to catch your attention, that states: Under no circumstances will we request your username or password. This statement is intended deter the user from being deceived by these "phishermen."
Now that you are able to identify the bait for what it really is, you can safely delete these email messages. You can grab your rod and tackle box, and yes, even that goofy hat, and try your luck at your favorite fishing spot.
|
