What is Phishing?

what is phishing

Phishing consists in the attempt to gather personal information from a person in a fraudulent way, normally through emails. The most common desired information is: passwords, e-banking details or personal accounts from different services.

One of the most usual Phishing methods is the sending of emails impersonating banks with links to websites where the user is requested to input their passwords and bank account number to check some information. This is illegal, and no bank would ever ask for said details.

How to identify a Phishing attempt?

There are many ways to identify phishing, the most effective ones are:

  • Don't trust any email that resembles any of a big company that contains typos.

  • A frequent topic is the existence of technical problems in your account.

  • They make several security recommendations against threats.

  • Prizes you might have won, if you have not participated in any contest, suspect. No one gives anything for free.

  • They talk about unusual accesses to your account.

  • They attempt to drive the user to take a quick decision, warning them about the consequences of not taking action.

These techniques become more and more advanced, thus the need of being specially careful against this type of fraud.

Here are some tips that will be useful to fight against phishing.

How to fight against Phishing?

Some advices to fight against this method are:

  • Never input your personal information or passwords by email. No legit communications request information like this, or ask you to log in your account and type it there without any kind of links.

  • If you suspect of an email being phishing never click on it.

  • If you want to check if the warning given in the email, type the web address manually.

  • A good practice is confirming the information using another method, like phone calling the company.

  • Ignore the emails you suspect are phishing and never reply to them.

  • Double (or even triple) check the address you are typing. There are many web pages that are identical to a legit website and might be phishing.

  • Make sure that the address uses a secure connection. You can identify that by making sure the address starts with https:// . Also, most modern browsers will display it in green, or even with a green tag with the name of the company in front of the address.

If you suspect you might have been a victim of phishing, change your password immediately, and contact the company.

Nowadays, we can see how often in the networks there are challenges that become viral.

Sometimes they are for good cause like the “Ice Bucket Challenge” where you had to throw buckets of ice water to raise awareness about the ELA. But these challenges do not remain here, there are also other ones that can lead to serious injuries.