Phishing

What is phishing?

Phishing is a form of online fraud. In a typical  phishing  fraud, an email - supposedly from a  legitimate company or financial institution - asks you  to ‘verify’ or ‘re-submit’ confidential information. It  lures you into doing this with a return email form on  a linked website or with a pop-up message.

How does phishing work?

Fraudsters may be looking for bank account and  credit card numbers, passwords or personal  identification numbers (PINs). If you inadvertently  respond, these may be used to make unauthorised  withdrawals from your bank account or to pay for  online purchases. Personal information may even be  sold on to other parties.

How can I tell if an email is fraudulent?

Trust your instincts. If a message looks fraudulent,  it possibly is. Here are some phrases that may be   used in a phishing e-mail:

• “Verify your account”.
•  “Respond within 48 hours or your account will     be closed”
•  “Dear valued customer”
•  “Click the link below to gain access to your    account”.

The dos and don’ts or phishing

• DO report suspicious emails. If you are suspicious of  a website, contact the owners - but not through the  email. Use an alternative channel. If you are unable  to contact the owners, contact the police.
• DO  be wary of clicking on links in email messages,  they  can lead to fake sites. Remember, even URLs in  browsers  address bars can be faked.
• DO  type addresses directly into your browser or use  bookmarks.
• DO  check security certificates before entering any  personal details.
• DO  update software regularly.
• DO  review credit card and bank statements for  problems  or inconsistencies.
• DON’T enter personal information in pop-up  windows - even if they are look official and secure.  Close pop-ups by clicking on the red X in the top  right corner - cancel buttons may not work.

How can I avoid phishing fraud?

• Trust your instincts. Ask yourself why you are being contacted or asked for this information.
• Never provide your personal information in response to an unsolicited email, fax, pop-up advertisement or unexpected website address.
• Review credit card or bank statements for problems  or inconsistencies.

What do I do if I have responded to a phishing scam?

Even vigilance doesn’t always guarantee total safety  and  security. If you think you’ve been scammed:

• Use up-to-date antivirus and anti-spyware software. Protection software keeps unwanted or malicious software at bay.
•  Notify financial institutions.
•  Change passwords
•  Notify the company you think is being forged.
•  Contact the relevant authorities.