Detecting Phishing Schemes in Emails

Post date: Dec 14, 2016 7:57:20 PM

Even the best of us gets scammed sometimes. A few years ago I got a call from a gentleman saying that he was from Verizon and wanted to do a quick survey about a recent change to my plan. I would get a $30 statement credit for my time. He asked me a few questions, recited my email and the last 4 digits of my social security number for confirmation, then asked me to repeat my account number so the amount could be correctly applied. Two days later, while driving to vacation my Google Maps app stopped working. I attempted to go through the Chrome browser on my phone for directions but couldn’t access anything. I tried to send a text to my wife but my service was completely shut off. I couldn't call, I couldn't text, I couldn’t use an app. What happened is the information that I confirmed and provided was enough to transfer ownership of my phone number to another person and they were using that to make long-distance calls throughout the Middle East. Verizon acted swiftly and I didn't incur any fees or charges and my phone number was restored and account secured within the hour. Scams happen to all of us.

Following in this blog post are a few tips that, when put into practice, will help you avoid scams and phishing schemes as best you can.

What to look out for:

    • Phishing: Phony emails, messages, texts, or links to fake websites that scam artists use to trick people into giving out personal and financial information.
    • Clickjacking: Scam artists tricking users to click on a seemingly harmless webpage, usually on a social network site, in an attempt to steal information or spread scams to others.

How can you diagnose a threat? Following all of these steps should keep you secure.

    • It’s generally good practice to only open messages from trusted sources.
    • If the message seems out of character for the sender contact them to confirm its legitimacy.
    • If the formatting of the message is odd, avoid opening it.
    • Never enter your email and password in any place other than the actual email login screen.
    • Never enter all login info, security questions, and account numbers on one screen.
  • When in doubt, pause what you’re doing and ask someone. Ex. Google the phrase used in the email.

Common Sense Media has some great additional resources.