Friday, October 2, 2009

Phishing


Phishing is a new Internet crime, that is flourishing day by day. To define Phishing lets say


“Phishing is a way to steal personnel data of Internet users such as credit card information, account information etc by make a malicious web site masquerade as a trust worthy entity.

According to antiphishing.org Phishing crime rose by 43% march this year as compared to last year


Phishing use social engineering skill to fool users. Most commonly by referring to malicious web site which is made to look like the authentic site of a bank or other financial institution. Differentiating the site from the original site require keen observation. However Phishing is not only done through email or IM even the original site may be wormed to refer the user to malicious pages as happened with myspace.com

Its important to know what Phishing is and how a user can avoid being phished and what steps can IT Security managers can take to deal with phishers, consider that more than $2 billion is lost my businesses annually on insurance covers relating to Phishing. Now even some banks are not providing insurance to claims due to Phishing. Their logic is that customer made the choice to enter the information in to the fake web site.


This article will deal with

  1. How to spot phishing web sites

  2. What to do after you've been phished


How can people protect themselves from becoming a victim of a phishing scam ?


By taking simple precautionary measures we can protect ourselves from phishers, and save ourselves

from on line fraud

  1. Don’t click links within emails that ask for personal, financial, or account information. Go to main page of the organization instead.

  2. Banks usually do not ask for information on the Internet they got nothing to do with your pin code, if still in doubt talk to the customer service of the bank, and instead of using the phone number in the email its better to look the number up.

  3. A message being generally addressed instead of being specifically address to you is a sure way to tell, you are being phished.

  4. Confirm the URL in the address bar if it spells right and is not a number, like IP adress. Normally phishers change a letter to redirect to their pages; like gogle.com instead of google.com.

  5. Using book marks would be safer as it would lead you to the exact site, instead of entering every time, as a typo can lead you to a phishers site.

  6. When replying to emails with sensitive, check the message headers. The ‘From:’ address and the ‘Return-path’ should be same, if they are different then the email address is spoofed.

  7. Look at the expanded headers of the emails to trace the path of email, phishing emails use dubious mail servers, and anonymizing services.

  8. Login sites of banks and other institutions dealing with private sensitive information use secure sites so in the address bar at the beginning of the address it should be HTTP not HTTPS; for secure HTTP.

  9. Secure sites use a certificate and a certificate signing authority indicated by the padlock icon in the bottom bar of the explorer window, confirm its presence; it shows the site is validated by a certificate.


  1. Most of the phishers are able to get a spoofed certificate now a days too, so click the padlock icon and confirm the company name of the certificate matches with the URL.

  2. Most modern browsers check the certificate for expiry dates and validity instead of clicking through the certificate warning, pay attention to hem.

  3. Use a phishing filter add ons for the browsers.

  4. Phishing sites are usually like poor imitations of the originals, with spelling mistakes incorrect graphics etc, so be on the look out for the anomalies in the design.

  5. Resist greed, like free money offers; if some thing is too good to be true then it must not be true.

  6. If your friends account is compromised then the mail could come from his email address, confirm him by phone before giving out personnel information.


What action can people take if they discover that their private information has been stolen


Prevention is better than cure so the best policy is to avoid being phished, however if a negligence is already done, following measures could be taken to minimize the damage


  1. Report to the organization whose site the phiser replicated, block your account.

  2. Change your password immediately .

  3. If you are unable to login use the hint service and change password and hint and contact the organization directly.

  4. Check the transaction history, may be you are able to get insurance cover for fraudulent transactions

  5. Several sites banking sites and Gmail offer log in and activity history keep, check the history frequently.

  6. Report scam to your local law enforcement agency.

Posted by at No comments:
Labels: , , , , , ,
Subscribe to: Posts (Atom)