Resources
General Support: Safe Computing
Phishing Attacks
"Phishers" are people who use methods to trick users into giving out personal information. They will typically forge email addresses or web sites to look genuine, provoke a computer user with some kind of urgent request, and then use techniques to take sensitive information, such as passwords, credit card numbers, etc.
The number and sophistication of phishing scams sent out to consumers is continuing to increase dramatically. While online banking and e-commerce is generally very safe, as a general rule you should be careful about giving out your user account/password or personal financial information over the Internet.
- Be suspicious of any email with urgent requests for personal
information.
- phishers typically include urgent (but false) statements in their emails to get people to react immediately.
- they typically ask for information such as usernames, passwords, credit card numbers, social security numbers, date of birth, etc.
- phisher emails are typically not personalized, but they can be. Always call to check or verfiy via another means if you are unsure.
- Don't use the links in an email, instant message, or chat to
get to any web page if you suspect the message might not be
authentic or you don't know the sender or users's handle.
- instead, call the company or person on the telephone, or log onto the website directly by typing in the Web address in your browser.
- Avoid filling out forms in email messages that ask for
personal information.
- you should only communicate information such as credit card numbers or account information via a secure website or the telephone.
Source: APWG - www.antiphishing.org
Return to top