Saturday, November 05, 2005
Tips:- What Is a Phished Email ?
How can I tell if I'm being phished?"
Phishing is a fast-growing type of Internet fraud. The first stage of the scam is when you receive an email that appears to come from a trusted institution such as eBay, PayPal, or your bank. The email subject and text vary, but the fraudsters often pick an angle that scares users into taking action quickly, such as warning your account may be suspended or that unusual logins have been made. Other hoax emails look like eBay second-chance offers; invitations to become an eBay PowerSeller; or emails announcing you have won an eBay contest.
Phishing emails contain a link that you are instructed to click. This leads to a web page that looks just like the business the email supposedly came from, but has really been set up by the fraudster. The page requests your username and password, which, if you provide them, will be used for criminal purposes such as identity theft or fraud.
A year ago, phishing emails were easy to detect. The spelling and grammar were often awful, and the designs just didn't look right. Still, they worked often enough for the fraudsters to make money and improve their game. Their emails are much more convincing now - subject lines vary widely, email layouts are identical to the real thing, and link URLs are cleverly composed to mock the real site.
There are various ways of detecting a phishing email. It's possible to do it manually, but you must have your wits about you, and all of us can suffer errors of judgment when we're tired or stressed out. Still, if you rely on the manual approach, here's how I recommend you do it:
- Check the address that the email was sent to, as many of us have multiple email addresses. Is your account actually registered at this address? Phishing emails are sent using spamming techniques - they don't know that you have an account with this email address; it's just a random guess.
- Don't rely on your knowledge of prior phishing emails. Much as we detest these fraudsters, we shouldn't fall into the trap of thinking they are stupid. They are constantly changing and improving their attacks, and phishing emails can now look identical to the real thing - and different to all the ones you have seen before.
- Without clicking on the link, find out where it points. The way to do this varies between email programs, but if you hover your mouse pointer over the link it will normally show up in a tooltip or the program status bar. Find the first forward slash in the URL after "http://". There may be a lot of text before that first forward slash, but just ignore it - the fraudster is trying to fool you. Work backwards from the forward slash, and note down everything up to the second period you find. This is the real domain name of the website. If it doesn't match the domain of the business the email is supposed to be from then it's probably fraudulent.
