Phishing:Examples and its prevention method

Friday, January 23, 2009

Labels:
Phishing defined as fraudulent attempt, usually made through email, to steal your personal information. The best way to protect yourself from phishing is to learn how to recognize a phish.Phishing email normally come from well-known organization and ask for ur personal information such as credit card number, social security number, account number or password. Often times phishing attempts appear to come from sites, services and companies with which you do not even have an account.

Example of Phishing Email



















What look for in phishing email?


  • Generic greeting. Phishing emails are usually sent in large batches. To save time, Internet criminals use generic names like "First Generic Bank Customer" so they don't have to type all recipients' names out and send emails one-by-one. If you don't see your name, be suspicious.


  • Forged link. Even if a link has a name you recognize somewhere in it, it doesn't mean it links to the real organization. Roll your mouse over the link and see if it matches what appears in the email. If there is a discrepency, don't click on the link. Also, websites where it is safe to enter personal information begin with "https" — the "s" stands for secure. If you don't see "https" do not proceed.


  • Requests personal information. The point of sending phishing email is to trick you into providing your personal information. If you receive an email requesting your personal information, it is probably a phishing attempt


  • Sense of urgency. Internet criminals want you to provide your personal information now. They do this by making you think something has happened that requires you to act fast. The faster they get your information, the faster they can move on to another victim.



Example of paypal phishing
































Example of msn phishing













Prevention Method of Phishing


  • It is easier to investigate the crude phishing .When u receive a email from a bank which request for personal information that you never create an account in that bank .Then do not follow the link and enter your personal information.You also can check for that bank whether got send you a requested personal information email or not.


  • Besides that, you must read the message carefully whether there are any errors on it. It is because the errors found can determine whether the message is sent by the particular institution or the phisher.


  • Verify the URL Example~ Phish Tank provide service that you can use to verify suspicious URL before you proceed with the transaction.


  • Use the strong or different password for each of your accounts & change them frequently.


  • Do the business only with companies you know & trust.


As conclusion, Phishing has becoming a serious network security problem causing financial loss to both e-commerce company and consumer. In order to prevent phishing ,here strongly recommend that not to click the unknown link and read the email carefully because the bank wont request for personal information or any further detail of users. Be a smart internet users from now to protect ur own benefit.



Related Link


http://http//www.google.com.my/search?hl=en&q=prevention+method+of+phishing&btnG=Search&meta=


http://http//research.microsoft.com/en-us/um/people/chguo/phishing.pdf


http://http//en.wikipedia.org/wiki/Phishing







Posted by Gan Jian Hao
Posted by E commerce at 9:24 PM

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)