Beware of Phishing Scams
Phishing is an important method such as sending an e-mail spoofing the sender or connecting a fake e-mail to a fake homepage, such as credit card number and account information (user ID, password, etc.). It refers to the act of stealing personal information. Phishing is spelled phishing and is said to be a coined word made from fishing and sophisticated.
These days, not only are email senders spoofed to make them plausible or urgent, but they also spoof fake websites to connect to so that they are almost indistinguishable from real websites. However, the technique is becoming more and more sophisticated, and the number of cases that cannot be identified as a phishing scam at a glance is increasing.
Furthermore, recently, not only personal computers but also smartphones are increasingly being guided to phishing sites by e-mail.
Phishing scams include the following:
Direct to Phishing Site by Email
A typical method is to use an e-mail called a notification from a credit card company or a bank to skillfully click a link and guide the user to a fake site that looks exactly like a real site prepared in advance.
We will prompt you to enter your credit card number, account number, etc. and steal the entered information.
Guide to Phishing Sites With Information Such as Electronic Bulletin Boards
It is a method to guide you to access not only e-mail but also electronic bulletin boards and SNS posting sites by writing URLs.
How to Make the Displayed URL Look Like a Real URL and Access It
This is a method of guiding by displaying the URL posted on an e-mail or an electronic bulletin board so that it is mistaken for an existing URL.
For example, one letter (o) o of the alphabet may be changed to the number 0, or the uppercase (eye) I of the alphabet may be changed to the lowercase (el) l so that the viewer can make a mistake or trust. There is.
As a countermeasure, please note the following points.
- When accessing a web page where you enter the ID and password of a financial institution, enter the URL notified by the financial institution directly into the web browser, or use the bookmark of the web browser to bookmark the financial institution. Make sure to always visit the genuine page, such as recording the correct URL and accessing it from there every time. In addition, a real Web site of the domain name and URL always aware of, a correct Web site to verify whether the access to the access destination of the server certificate to verify the contents of the, let's try to support such.
- Normally, SSL is used as an encryption technology when logging in to Internet banking and entering important information such as credit card numbers. Make sure that every web page where you enter important information makes sure that SSL is adopted. You can check that SSL communication is being performed by checking the URL display part (address bar) of the Web browser, whether the operating organization name is displayed in green, or whether the key mark is displayed. If your page prompts you for important information and SSL isn't used, suspect a phishing scam first.
- If you are requested to take an unusual procedure in an e-mail sent under the name of a financial institution, it is also necessary to check with the financial institution instead of taking the content. If you're having trouble deciding if it's a phishing scam, you might want to contact the company that sent the email. However, the information of the other party in the e-mail is not always correct, so when making a call, be sure to look up the contact phone number on a legitimate website or mail from a financial institution. please.
- Complete security software is one of the best active virus protections that can be used as a countermeasure to prevent phishing.
Comments
Post a Comment