How to Spot a Phishing Scam
Mon Sep 25, 2006 11:59AM EDT
See Comments (73)
If you haven't read part one of this phishing report, I recommend you do so before diving into part deux. Knowledge is power, and you should learn how to recognize every trick phishers have up their sleeves.
Today we're going to demystify everything inside their bag of tricks, as I teach you how to spot a fake web site better than you can spot a fake Louis Vuitton on the street. So before you volunteer private information to the phishing professionals, learn to recognize the following telltale signs, test your phishing IQ, and don't forget to delete all those spam emails.
A recent study recognized three reasons why people still fall prey to phishing scams: lack of knowledge, visual deceptions, and inattention to detail.
They say the devil is in the details, and I'll show you why that's true in this case.
Security Signs
There are a few ways to recognize a secure connection between servers. You probably miss them every time you visit a secure web site. Because these indicators are so subtle, most of us still can't easily spot them.
Follow along with me here, by going to the Yahoo! Mail login page. Notice a few very important things here:
1) The URL of the page is https://login.yahoo.com/config/login_verify2. Notice the "s" at the end of "https." This "s" means the connection is over SSL (Secure Socket Layer), which means the page has established a secure connection and will encrypt all the information you enter on this page. You must always look for "https" on any site you use to enter sensitive information. This includes login pages, online shopping sites and bank web sites.
2) Notice the closed padlock on the lower right corner of the browser window. If you move your mouse over it, it will say "Signed by Equifax." If you click on it, it will open a window that gives you more details regarding the certificate. Every company that asks you for sensitive information must have a digital certificate, preferably one from an established certificate authority. VeriSign, Thawte, GeoTrust, and Entrust.net are just a few of these companies. Also keep in mind that the padlock must always be on the browser bar; any padlock within the content of the page doesn't mean a thing.
3) Yahoo! users have added security when they activate Yahoo!'s new phishing feature. If you notice on the mail login page, users can now add an extra layer of security using personalized sign-in seals such as their own secret message or image on their login page. Every computer they use to login to their Yahoo! accounts will display this seal, making it easier for them to recognize if they're on the real Yahoo! site or a fake one. Phishers be warned!
URL Madness
You can't judge a book by its cover, and in this case, you won't be able to tell if a web site is a fake just by looking at the web design. These smart criminals can replicate any web site down to the last detail, and it wouldn't surprise me if they used the same web designer to do it. Consumers have lost $630 million to email scams in the last two years, according to Consumer Reports' State of the Net. Phishing is a big business, so never think for a second that these criminals wouldn't spend thousands of dollars creating sites as credible as the real thing. Sometimes their designs feel so authentic, they even link to the real web site to boost your confidence. This is where it gets tricky, and you must watch out for illegitimate domain names.
Here's what you should look for:
a) Misspelled domains are big deceivers. Phishers will purchase a domain name that resembles the real domain. They will replace letters with numbers or with other letters. Pay close attention to the spelling of a domain names, and learn to spot a fake like www.yohoo.com or www.paypol.com.
b) Variations of domains should also be a red flag. Don't click on any email that contains URLs like http://center.yahoo-security.net. A legitimate URL should read http://center.yahoo.com if it actually belongs to Yahoo! Anyone could've purchased www.yahoo-security.net for a scam (I'm just using Yahoo! as an example here).
c) An IP address looks something like 102.199.60.250. Bottom line, never trust emails that point you to URLs that only show an IP address.
Other Tips
1) Never test web sites to see if they're legitimate or not. This means entering passwords or personal information. These sites may install malicious software—known as keylogger software—that records everything you type, then sends that information to scammers.
2) Stay abreast of the latest scams: The FBI's web site has a list of all the latest scams reported, so check it periodically.
3) If you're being urged to "verify" sensitive account information, contact the company directly instead. Always type the web site's address in the address bar instead of clicking links on suspicious emails.
4) PayPal never uses generic greetings in their emails. Next time you get an email from PayPal, check the salutation, as PayPal will usually use your member name.
5) Emails from banks and credit card companies will usually include partial account numbers. Therefore, one should always be suspicious if the message does not contain specific personal information.
Test Your Phishing IQ
The Washington Post and MailFrontier have some excellent tests you can try out. Find out how well you recognize a fake. Then come back, and tell me how you did.
Do you have extra tips to offer? Share them with me in the section below.
Disclosure: Yahoo! Mail is owned and offered by Yahoo!, Inc., which also owns and operates Yahoo! Tech.
Top 5 Posts
Comments on How to Spot a Phishing Scam
Post a Comment
Join in the discussion. Here you'll see the comments in the order they were posted.
-
67 Posted by rls64_rodman on Thu Sep 3, 2009 8:44PM EDT Report Abuse
Hi I will have to agree with fatherof3cuties about the seal, you should always check spelling when typing web addresses, if your like me and don't spell all that well.lol And by all mean run anti-virus software at all times and dont turn your firewalls OFF! And I took the test at the POST and got 8 of 10. Said the 2 I got wrong were fakes. Had never seen one and the other comes to me all the time from MSN and I only go to that account 4/5 times a year and still have the account and all the goodies that go with it.
-
68 Posted by ronsplace2006 on Thu Sep 3, 2009 8:50PM EDT Report Abuse
How do I report another Yahoo user that I have exposed as a part of a scam?? I kept all correspodence I had with this person and actaully got her to admit she tried to extort money from me...I have her IM info....sexyirene...if that helps. This person really needs to be stopped...I am ready to move to another server unless I get some help here..I have tried everywhere but can not figure out how to report this person...please help me. ronsplace2006@yahoo.ca
-
69 Posted by tandt0820 on Thu Sep 3, 2009 9:55PM EDT Report Abuse
I have been receiving lots of emails that are obvious scams promising millions of dollars and most of them have a yahoo address such as this....Email below:(secretary_stephen8@yahoo.co.uk) If these are real yahoo addresses, seems that Yahoo could shut down a lot of theses illegal activities or at least alert the proper authorities....just a thought, Thanks Tim
-
70 Posted by natf2 on Thu Sep 3, 2009 7:34PM EDT Report Abuse
when i receive a phish from some european lottery scam...I click reply and tell them to remit my winnings to the remaining Beatles, their heirs or any illegitimate forthcomings from aforementioned blokes...oh, give the queen my best...my question is..by replying, am I exposing myself or my computer to anything?
-
71 Posted by ampmrd on Thu Sep 3, 2009 2:53PM EDT Report Abuse
well recently i've notice that even though i have a sign seal and an avatar every time i turn on the computer and sign in the sign seal is gone and the avatar is gone also, could this be a phishing site.Are both saved as cookies because i tend to delete my cookies
-
72 Posted by rajresh12 on Thu Sep 3, 2009 8:27PM EDT Report Abuse
dear i want to ask how can we know that the e mail material is scam?regards
-
73 Posted by me2todo on Thu Sep 3, 2009 7:14PM EDT Report Abuse
thank you info was very helpful. I have been trying to forward an email to yahoo w/yahoo in the address. I knew it was a scam, but no matter what address I use email will not go through. thank you again. linda
Sponsored Links
My Tech
Please enable your browser's cookies to activate the My Tech column.
Also on Yahoo! Tech
| Computers | Home Office | Wi-Fi & Networking | Phones & PDAs | Cameras & Camcorders | TV & Home Theater | Portable Audio |
|---|---|---|---|---|---|---|
66 Posted by fatherof3cuties on Thu Sep 3, 2009 3:58PM EDT Report Abuse
I have to disagree with your statement under "Security Signs", stating that the Yahoo Seal will be displayed on EVERY computer you use to sign into Yahoo. This statement is innacruate, because you will need to create a new seal on each computer you wish to use to login to Yahoo. If you have a seal on your home computer, Yahoo has no way of knowing that you will be logging into a different computer, and therefore displays no seal at all. You are given the option to create a new seal, but that defeats the purpose, as clicking on a link claiming to be mail.yahoo.com may not actually be mail.yahoo.com, and you just created a seal on a phishing site. Your best bet is to manually type in the address, and make sure your spelling is correct, and NEVER divulge personal information from a computer that is not located in your home or your office. I also advise to install anti-virus software, anti-spyware, and keep them both updated. Most new computers only come with a 3-month or 15-month anti-virus subscription, and after they expire, they will not update until you purchase a new license. This leaves you open to new viruses, as the anti-virus contains old definition files that cannot detect the new viruses.