A phishing scam is a technique in which an unscrupulous webmaster attempts to trick hapless victims into entering private information. Most scams occur through email, and they claim to be private investors or individuals seeking help with money transfers.
However, some websites attempt to masquerade as a common banking institution. Some scams trick people into entering their Paypal or eBay information and steal money through online purchases. Additionally, identity thieves use phishing methods to trick people into supplying social security and address information. Before clicking a link in a strange email, know how to identify phishing scams.
Identifying Phishing Scam Emails
Most phishing scams look entirely legit, using images and return email addresses that are a part of a banking institution. The email may use the corporate logo and even have a return address of a real employee. However, reading the text of the email usually identifies a scam.
First, many phishing emails have poor grammar. To avoid authorities, the phishing emails are sent from servers in non-English speaking countries. The scammers are forced to use translation software, so the grammar and spelling are poor. Many of these emails are spun from programmed templates, so the email may have broken code embedded in the document.
Phishing emails always have a link to a website address that collects personal information. The link in the email is coded in a way that makes it look like a legitimate financial company like Paypal or a large, popular bank.
However, embedded links mask the true address of the server. Although the link may have the text “friendly_bank.com,” hovering the mouse pointer over the link shows an entirely different domain address. This technique is the number one way scammers trick victims into entering private information on scam websites. Never click a link from a strange email unless you first check the actual website address.
Best Practices to Avoid Being a Victim
The best practice when receiving an email from a sender claiming to be a representative of a banking institution is not to click the link. If the email requests the user to access a web page, type the domain into the browser instead of clicking the link in the email.
This ensures that the website you access is indeed the banking institution and not part of a phishing scam. Additionally, a banking institution does not need to verify your password. Phishing emails normally ask you to enter password information, which is a clear sign of a scam.
Never enter information into a website that is insecure. Phishing scams are not secured pages. Browsers like Chrome, Internet Explorer, and Firefox display a lock image in the browser to verify the site is secure. Secured site addresses also begin with “https,” which is shown in the navigation bar of the browser.
Basic Steps to Prevent a Phishing Scam
- Don't be afraid of the sensationalism in an email. Many times, identity thieves attempt to scare the recipient by telling the user an account will be disabled or canceled if private information isn't entered. Confirm these threats with the bank.
- Don't click links that require confirmation of a password or username. If an email says there is a requirement for password or information confirmation, type the website address into the browser instead of using the email link.
- Be wary of any email that is sent from a banking institution. This includes Paypal or eBay. These two websites are often used to gain access to account information and subsequently steal money.
- Banking institutions don't ask for existing customers to re-enter personal information. If you receive an email that is questionable, call the bank to verify.
Protect your identity from phishing scams and never carelessly click links in emails. If you receive a suspected phishing email, forward it to the institution and ask for verification. Additionally, protect your privacy by ensuring any website that asks for your information is secure. These practices will decrease the chances of identity theft from phishing scams.
 |
 |
