September 29, 2021

Phishing Attacks: ALERT!

Nowadays, phishing attempts are one of the most commonly faced threats by the people and organisations. You must be aware about it, to protect your confidential information. These types of attacks are usually carried out in the form of an email, text, social media sites and various websites.

What Is Phishing ?

Phishing is a cyber attack in which malicious Attacker sends distinguish emails, texts or SMS with suspicious link. Sometimes ,these links are displayed while we are browsing something and knowingly or unknowingly we tap or click on that link . After tapping on that link ,the target is taken to new website that looks like a legitimate website of the victim’s bank or any other organisations where the target does confidential business.

Types Of Phishing Attacks:

There are numerous kind of Phishing techniques that hackers use to manipulate their presence, some of them are shown below:

SMISHING:

As this name looks like a combination of SMS and phishing. This is carried out by sending customised message on mobile or link . Content of message can attack many people who follow false links and end up being victim of scams. Some of the false examples of such incidents can be-

  • You win lottary ticket/lucky winner /discount offer for you .
  • Your Bank needs information.
  • Your Account has been Hacked.

SEARCH ENGINE PHISHING:

It usually occurs when a hacker successfully grabs the top position on Google. User may find notification that he/she is invited to check a link. The search may be valid but site is bogus and only operates to capture confidential information of user.

PHARMING & SPEAR PHISHING:

It is fraudulent activity in which infected software mounted on website, misleading people to fake web pages without awarness or permission .And it oftenly mean for fraudulent purpose to steal information .

How Can You Detect Such Attacks??

  • The mails or calls coming from bank or tax authority and asking about private details this is particularly doubtful ,one should not response this calls .
  • The “From” address in the email is an emulation of a valid address, particularly from a corporation.
  • Layout and structure are distinct from what you usually get from a company. Perhaps the logo appears pixelated, or the buttons are of various colours. Or maybe there are odd paragraph gaps or additional spaces between phrases.
  • There are links from obscure sources in the email that you were not anticipating.
  • The site is not protected. Suppose you go forward and tap on an email link to enter your confidential details. Make sure at the start of the URL you find the “HTTPS” instead of “HTTP” and the lock icon.

How can we avoid it ? How can we alert ourselves before tapping any malicious link ?

Keep Yourself Updated

Complete knowledge about all the new and old phishing methods is one of the best ways to protect yourself from these scams. When you know all fraudulent activities, it will become easy for you to detect that scam and protect yourself.

Click wisely

Do not tap on the links attached to the emails or text messages you receive from unknown sources.Also, avoid clicking on pop-ups or other links you see on various websites (even authentic sites).

Use antivirus program

An antivirus program detects and blocks the downloading of suspicious software via the Internet, USB flash, etc.

Confirm the site’s security

The site secured with SSL (Secure Sockets Layer) certificates has a lock icon, and its URL starts with “HTTPS” rather than an insecure “HTTP”.

Do not give personal information.

The best practice to safeguard your confidential information is to stop sharing it over the Internet. Your bank or any other organization will not ask you to provide such details by sending emails. Whenever you find such emails, block them immediately.

What Can We Learn From These Kind Of Attacks?

Phishing attacks have been with us for a long, and there is no evidence of them going away any time in the future – on the contrary, they are getting more sophisticated and widespread. Cyber criminals keep on trying different phishing methods to manipulate their targets. They will try to grab your attention and compel you to click on malicious links by creating a sense of urgency or can ask you to give information to save your bank account from freezing. Follow this complete guide to quickly detect and avoid yourself from being a victim of phishing attacks.

How To Spot Common Scams? How To Report It And What To Do If You’ve Been Scammed?

You can refer the following helpline websites to file a complaint or call the helpline no. provided below:

  • https://cybercrime.gov.in/.
  • https://staysafeonline.org/stay-safe-onlineidentity-theft-fraud-cybercrime/spam-and-phishing/
  • reportphishing@apwg.org.
  • Victims of cyber fraud call on helpline number 155260

This article is written by Twinkal Bandwal of SKNCOE for ZeroGravity and edited by Nia Gajbhiye, Editor of ZeroGravity.

The flyer is designed by Revan Bhonde of SKNCOE for ZeroGravity.