26 April 2014
You receive an email from your bank informing you that your account has been deactivated because of suspicious activity. The message requests you to click a web link and log in to verify your account information. Following the instructions, you are directed to what appears to be a legitimate account update page of your bank. Here you are asked to enter your name, password, account number and social security number and\or a PIN. It all seems legitimate, the bank logo, the web site address and the format of the site is the same or appears the same as you remember it. However, this is a scam; the email is a fraud and now a cybercriminal has your personal information. He or she can now use or change your account or open a new account in your name.
Congratulations, you have now become a victim of a growing crime called "Phishing".
What is Phishing?
Phishing is defined as tricking someone into giving up private data by impersonating as an authority. This is mostly accomplished using email, texts or instant messages, directing the recipient to a fake website that appears legitimate. Traditionally, cybercriminals would use personal identifiable information or PII most likely to try and open up a credit card, bank account or any other financial account with the end result to make unauthorized purchases in your name. Identity theft is a very common result of phishing scams.
How does it affect me and my online social life? Why should I care about phishing threats?
In this report I will explain the behaviors and some of the technology behind phishing in order to show how the ever increasing threat is much more than just...