Phishing

The Scam

Phishing

• Phishing is a method by fraudsters to access valuable personal details such as usernames and passwords and can also involve sending malicious attachments or links from “your bank” asking you
to confirm your account details.

• Once your personal details have been accessed, criminals can then record this information and use it to commit fraud crimes such as identity theft and bank fraud.

• Phishing messages generally try to convince the recipient that they are from a trusted source. “Spear-phishing” is a technique whereby
criminals use personal information to earn trust and lower the
intended victim’s defences increasing the chances they may open
attachments or embedded links.

• Criminals have stepped up their activity by targeting business users
by claiming that they have specific knowledge of the business.
These may be business critical issues: customer feedback, requests
for information, staffing or legal notices.


The Advice

• When responding to emails or phone call, never give your login
or personal details. If you receive an email from a company that
claims to be legitimate but is requesting these details, or a contact
number tell them you will call them back. Use a contact number for
the organisation that you have sourced reputably. Speak to them
directly to confirm that the message is genuine.

• Use your spam filter, if you detect a phishing email, mark the
message as spam and delete it, this ensures the message cannot
reach your inbox in future.

• Never respond to a message from an unknown source and take care
not to click any embedded links.

• Always remember that banks will never contact customers by email
to ask for passwords or any other sensitive information.