Getting Comfortable With The Basics

– What Is Phishing?

What Is Phishing?
What Is Phishing, and How Do You Avoid It? – By Review Geek Review Geek

“Phishing” is a catchall term for a variety of cybercrimes. But in its most basic form, phishing (pronounced “fishing”) is a scam in which a victim is tricked into sharing sensitive information or downloading ransomware.

Most Common Forms of Phishing

Here are the common forms of phishing which should illustrate my point:

  • Email Phishing:
    It is the most common form of phishing. A scammer impersonates a popular website or figure, like Amazon or a politician, in an attempt to steal your information or trick you into downloading ransomware. They may even create a custom domain name to make their email address look “official.”
  • Spear Phishing:
    Scammers who want to hit a specific target will resort to “spear phishing.” They gather information on their victim before impersonating a trustworthy person, business, or automated message.
  • Clone Phishing:
    Most phishing emails are sent to victims at random. But sometimes, a scammer will send you a duplicate version of an actual email. For example, a hacker may send a copycat “order confirmation” containing malicious links or attachments if you receive an order confirmation.
  • Pop-Up Phishing:
    Popups are still a common vector for scams and malware. For example, modern popup phishing attacks usually take advantage of a browser’s notification settings to send you “antivirus warnings.”
  • Angler Phishing:
    The world of social media lets scammers “angler phish” for victims. Essentially, scammers will impersonate a public figure or company on social media. For example, someone may copy a YouTube creator to share scammy “sweepstakes” links in a video’s comments.
  • Whaling:
    When a phishing attack is aimed toward an important person, such as a CEO, it’s called “whaling.” These targets are often wealthy, easy to blackmail or have access to a corporation’s backend.
  • Smishing and Vishing:
    These terms describe phishing through an SMS, text message, or phone call. Most of the spam messages or robocalls you receive are forms of “smishing” or “vishing.”

What Should You Do if You’re a Victim of Phishing?

According to the U.S. Federal Trade Commission, you should report all phishing attacks to the Report Fraud website. You can also forward phishing emails to [email protected] and forward phishing text messages to SPAM (7726). If a phishing attack impersonates a person or organization, you should also warn them of the attack (especially if they’re a family member or someone within your company).

If you fall victim to a phishing attack, it’s time to enter harm reduction mode. Change the passwords to all sensitive or affected accounts, and enable 2FA to lock out scammers who have your password—a password manager will help you get the job done.

And if a scammer gets your credit card information or bank details, tell your bank! They’ll help you replace the affected card and dispute fraudulent charges. You may also need to freeze your credit cards or set up a fraud alert if a scammer obtains your social security number, address, or birthday. This will prevent unwanted transactions and keep scammers from opening new lines of credit under your name.

Tech News by Topic