Presentation is loading. Please wait.

Presentation is loading. Please wait.

CYBER SECURITY-PHISHING: DON’T BECOME A VICTIM OF FRAUD

Published byBrandy Evetts Modified over 9 years ago

Similar presentations

Presentation on theme: "CYBER SECURITY-PHISHING: DON’T BECOME A VICTIM OF FRAUD"— Presentation transcript:

1 CYBER SECURITY-PHISHING: DON’T BECOME A VICTIM OF EMAIL FRAUD

2 91% Of Targeted Attacks Start With Spear-phishing Email
Did You Know... 91% Of Targeted Attacks Start With Spear-phishing The word phishing comes from the analogy that Internet scammers are using lures to fish for passwords and financial data from the sea of Internet users. The term was coined in 1996 by hackers who were stealing AOL Internet accounts by scamming passwords from unsuspecting users. Since hackers have a tendency to replacing "f" with "ph" the term phishing was derived.

3 SPEAR PHISHING The Phish appears to be legitimately addressed from someone within that company in a position of trust and request information such as login ID’s and passwords. Spear phishing scams will often appear to be from a company’s own human resources or technical support division and may ask employees to update their username and passwords. Once hackers get this data, they can gain entry into secured networks. Another type of spear phishing attack will ask users to click on a link, which deploys spyware that can steal data.

4 WHAT IS PHISHING? (fish’ing) (n) The act of sending an email to a user
falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft. directs the user to visit a web site update personal information (passwords, credit card, social security and bank account numbers)

5 PHISHING TECHNIQUES Official looking and sounding emails
Copies legitimate corporate s with minor URL changes Standard virus/worm attachments to s IP addresses instead of domain names in hyperlinks Setting up fake web sites that closely mimic the domain name of the target website.

6 3 THINGS TO REMEMBER YOU have to do something to be attacked!
NEVER click on “Click Here” or embedded links! NEVER give personal information over internet!

7

8 TIPS TO HELP YOU RECOGNIZE PHISHING SCAMS AND FRAUDULENT EMAIL
Generic greeting From and return path don’t match Insecure site-look for Requests personal information Sense of urgency Spelling errors Poor grammar Forged link-beware of symbol in the URL Warns that you’ve been a victim of fraud Rule of thumb: Anytime you are asked for personal information, it is a scam

9 Source: http://www.sonicwall.com/furl/phishing/phishing-quiz-question.php

10

11

12

13

14

15

16 Other Phishing Scams The "Nigerian" Scam: Costly Compassion
1997-Secret Service confirmed losses just in the US of over 100 million dollars in 15 months Help! I'm Stuck in London and I've Been Robbed! Fake FBI s Seeking Personal Information Work-From-Home Scams Dormant African Account

17 “HELP, IT’S ME” -----Original Message----- From: C. McGarrett; to: undisclosed recipients: ; Sent: Fri, Sep 2, :25 am Subject: It's urgent, please respond It’s me, I really don't mean to inconvenience you right now. I made a little trip to Scotland, and misplaced my wallet that contains my passport and credit cards. Just hearing from me like this, sounds a little odd, but it all happened very fast. I've just been issued a temporary passport and also my ticket, but I'm short of funds to pay for the bills here. I've also been trying to reach my credit card company, but from the message I just received, I'll need some verifications like answering my home phone, and that will only happen when I'm home. Please, can you lend me some funds to secure the bills? I'll be willing to pay back as soon as I return. Please respond as soon as you get this message, so I can forward my details to send the money via western union or money gram, you can also contact me via the hotel's desk phone. The numbers are, , Looking forward to your response. In HIS Service and Yours, Christian McGarrett Police Detective Sergeant and State Criminal Investigator

18 Phishing Facts 6.1 Billion - Number of phishing s sent world-wide each month $1,200 - Average loss to each person successfully phished (Federal Trade Commission) 15,451 - Number of unique phishing attacks in January 2006 (Anti-Phishing Working Group) 7,484 - Number of phishing Web sites found in January 2006 (Anti-Phishing Working Group) 27,221 - Number of phishing Web sites found in January 2007 (Anti-Phishing Working Group) Source:

19 USE COMMON SENSE – YOU need to do something to be attacked
Why would a perfect stranger pick YOU-also a perfect stranger-to share a fortune with and why would you share your personal or business information, including your bank account numbers , with someone you don’t know? If it sounds too good to be true….IT IS!

20

21 WHAT CAN I DO TO PREVENT PHISHING?
Keep all software updated , especially anti-virus Stay away from shady websites Do not respond to suspicious and do not click on any links within the Only open attachments if you're expecting them If you get ERROR when making purchase-DO NOT CONTINUE LOG OFF – Don’t just close browser If doing private transaction, CLOSE TABS – Every open tab allows access to others. YOU initiate connection /communication – Don’t click on link to get there Call company by phone if you get a suspicious but DO NOT call the phone number in the Remove programs you don’t need Reboot occasionally

22 E-mail client configuration YOU control what you download
Do NOT auto execute anything Do NOT automatically download HTML graphics or content Do NOT display graphics in message Do NOT allow executable html content Turn OFF Attachment Preview If NOT sure configure to “WARN ME BEFORE” You can control drive-by scripts running across the screen

23

24 DISABLE PASSWORD OPTIONS

25

26 WHAT TO DO IF YOU RECEIVE A SUSPICIOUS EMAIL
DO NOT respond to the DO NOT CLICK ON A LINK IN AN unless you are sure of the real target address. (Hover mouse over link and compare to header—very close but does not match.) NEVER reveal personal or financial information in a response to an request, no matter who appears to have sent it. D-E-L-E-T-E the

27 WHAT TO DO IF YOU’VE RESPONDED TO A PHISHING SCAM:
Report the incident -FTC, FBI, Secret Service, UNM IT Services Change the passwords on all your online accounts Routinely review your credit card and bank statements Use the latest products and services to help warn and protect you from online scams (Antivirus software can only protect you from known viruses.) protect you from known viruses.)

28 If you think you have been a victim of a phishing scam or want further information, please contact Deb Kuidis at or

Download ppt "CYBER SECURITY-PHISHING: DON’T BECOME A VICTIM OF FRAUD"

Similar presentations

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.

Providing protection from potential security threats that exist for any internet-connected computer is termed e- security. It is important to be able to.
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
How to protect yourself, your computer, and others on the internet

How to protect yourself, your computer, and others on the internet
Account HIGHJACKING & IDENTITY THEFT GPCE Credit Union has prepared a slide show presentation to examine the most prevalent financial crimes at work today.

Account HIGHJACKING & IDENTITY THEFT GPCE Credit Union has prepared a slide show presentation to examine the most prevalent financial crimes at work today.
1 And Tips to Avoid Becoming a Victim Recent Cyber Crime Cases.

1 And Tips to Avoid Becoming a Victim Recent Cyber Crime Cases.
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via

What is Bad ? Spam, Phishing, Scam, Hoax and Malware distributed via
Today’s Agenda… Knowledge Check What is Cyber Crime? Identity Theft Phishing Common Scams inc. online and mobile phone scams Prevention Methods.

Today’s Agenda… Knowledge Check What is Cyber Crime? Identity Theft Phishing Common Scams inc. online and mobile phone scams Prevention Methods.
1 Identity Theft and Phishing: What You Need to Know.

1 Identity Theft and Phishing: What You Need to Know.
BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.

BEWARE! IDENTITY THEFT CARL JOHNSON FINANCIAL LITERACY JENKS HIGH CSHOOL.
Protect Yourself Against Phishing. The good news: The number of US adult victims of identity fraud decreased from 9.3 million in 2005, to 8.4 million.

Protect Yourself Against Phishing. The good news: The number of US adult victims of identity fraud decreased from 9.3 million in 2005, to 8.4 million.
Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.

Identity Theft: How to Protect Yourself. Identity Theft Identity theft defined:  the crime of obtaining the personal or financial information of another.
What is identity theft, and how can you protect yourself from it?

What is identity theft, and how can you protect yourself from it?
1.3.1.G1 © Family Economics & Financial Education – Revised October 2004 – Consumer Protection Unit – Identity Theft Funded by a grant from Take Charge.

1.3.1.G1 © Family Economics & Financial Education – Revised October 2004 – Consumer Protection Unit – Identity Theft Funded by a grant from Take Charge.
1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.

1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.
Bsharah Presentation Threats to Information Security Protecting Your Personal Information from Phishing Scams.

Bsharah Presentation Threats to Information Security Protecting Your Personal Information from Phishing Scams.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Phishing – Read Behind The Lines Veljko Pejović

Phishing – Read Behind The Lines Veljko Pejović
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Similar presentations

Ads by Google