Phishing is one of the easiest forms of cyber attack for a criminal to carry out. Phishing is typically carried out by e-mail.
For example:The hacker usually sends an e-mail that appears to come from a bank, or credit card company requesting “verification” of information.
The link goes to fake login page of Facebook, and when the login info is entered into the fake login page the password is emailed to the hacker or can be saved in a text file hosted on the server.
Here are the measures to protect yourself from Phishing attacks:
Guard against spam:
Be especially cautious of emails that Come from unrecognized senders.Ask you to confirm personal or financial information over the Internet and/or make urgent requests for this information. Aren’t personalized.Try to upset you into acting quickly by threatening you with frightening information.
Communicate personal information only via phone or secure web sites:
When conducting online transactions, look for a sign that the site is secure such as a lock icon on the browser’s status bar or a “https:” URL whereby the “s” stands for “secure” rather than a “http:”.
Do not click on links, download files or open attachments in emails from unknown senders. It is best to open attachments only when you are expecting them and know what they contain, even if you know the sender.
Browse securely with HTTPs
You should always, where possible, use a secure website (indicated by https:// and a security “lock” icon in the browser’s address bar) to browse, and especially when submitting sensitive information online, such as credit card details.
You should never use public, unsecured Wi-Fi for banking, shopping or entering personal information online (convenience should not trump safety). When in doubt, use your mobile’s 3/4G or LTE connection.
Watch out for shortened links:
You should pay particularly close attention to shortened links, especially on social media. Cybercriminals often use these – from Bitly and other shortening services – to trick you into thinking you are clicking a legitimate link, when in fact you’re being inadvertently directed to a fake site.