My 101 series is a basic introduction to information security concepts.

What is Phishing?

/ˈfiSHiNG/noun

  1. the fraudulent practice of sending emails purporting to be from reputable companies in order to induce individuals to reveal personal information, such as passwords and credit card numbers.”an email that is likely a phishing scam”

Basically, people get fake emails and think they’re real, so they click on them.

Lol I’m too smart to be phished.

Maybe… but The 2018 Verizon DBIR revealed that those who did get phished are likely to be fooled again. So let’s go over the warning signs, shall we?

Do NOT click on

  • Strange emails from friends that don’t sound like them
  • Emails from institutions asking for passwords
  • Links from emails to banks/other institutions.

DO

  • double check the link at the top of the address bar. Make sure it matches the institution BEFORE entering your password
  • Google search instead of typing out the name of the site you want
  • Open a fresh tab and start over. It only takes a second and your information is worth your time.

How can I prevent phishing?

Each one teach one. Learn the signs of a phishing attempt and teach a friend… or two… or three. You can guarantee I’ll do my part.

Tagged with: ,