Phishing is the most common type of social engineering attack that occurs today. The main goal of phishing attacks is to obtain personal information such as names, addresses and Social Security numbers. In short, these criminals use shortened or misleading website links that redirect users to websites that are really phishing landing pages. These malicious links are often delivered in e-mails or text message to the victims, and many contain spelling or grammar errors.
However, they all have the same goal of using fake websites to steal user login credentials and other personal information. The key to preventing this type of attack is to never click on a link that you aren’t familiar with or that doesn’t come from a trusted source. This week, we will conclude our look at some common phishing scams for you to be on the lookout.
9. The Tax Communication
Practically everyone has annual taxes to submit. That’s why this phishing attempt is so popular. The message states that you are either eligible to receive a tax refund, or you have been selected to be audited. It then requests that you submit a tax refund request or tax form. This scam is very common this time of the year.
10. The Checkup
This is one of the more unassuming phishing email attempts. It claims [company name] is conducting a routine security procedure and requests you verify your account by providing information. This scam is especially effective if you happen to be a customer of the named business.
- Don’t click on any links, open attachments, or expand any included pictures
- Don’t try to reply to the sender
- Report the scam (forward the e-mail to the FTC – firstname.lastname@example.org)
- Delete the email from your computer
- If you do legitimate business with a company mentioned in the phishing email, you can call the business and ask if they would like you to forward the email to them, so they may take further action.
Source: www.spyescape.com & www.securitymetrics.com