Phishing is becoming one of the most popular forms of online fraud. Its purpose is to obtain personal data of a person for illegal use. Anyone with an email address can fall prey to this kind of deception.
Necessary
- - modern antivirus;
- - browser with anti-spam modules.
Instructions
Step 1
Keep your antivirus software up to date. This can prevent things like downloading a Trojan virus from a web address that is disguised as a secure HTTPS connection. If your antivirus was released more than a year ago, then your computer is generally more susceptible to attacks that can damage the operating system and put your personal data at risk of phishing attacks.
Step 2
Don't click on hyperlinks in emails. It's not a good idea to use redirects in emails from unknown recipients. It is impossible to predict if the link is real or malicious code. Some hyperlinks can redirect you to fake HTML pages. There you will be asked to enter confidential information. If you really want to check the link, then manually copy it into the address bar of your web browser. Many internet clients have built-in anti-phishing programs. They will block the transition to an unsafe site.
Step 3
Check HTTPS (SSL). Whenever you enter sensitive information such as banking information, make sure that the letters "HTTPS: //" are in the first place in the address bar and not "Http: //" and there is a lock icon in the lower right corner of the browser. You can also double-click the padlock to verify the third-party SSL certificate that the HTTPS service provides. Many types of attacks are not encrypted but mimic an encrypted page. Always make sure that the web page is actually encrypted.
Step 4
Do not enter important or financial information in pop-up windows. A common phishing technique is to launch a fake pop-up when a user clicks on a link in a phishing email. This window can even be positioned directly above the window on a real site. Even if the pop-up looks safe, you should avoid passing on sensitive information. Close pop-up windows by clicking on the cross in the upper right corner. Clicking on "cancel" may redirect you to a link or download malicious code.
Step 5
Set up protection against DNS attacks. This is a new type of phishing attack that does not work through email, but instead poisons the local DNS server and allows all web requests to be redirected to another website that looks like a company website (such as eBay or PayPal). For example, if a user enters an eBay web address, that DNS server redirects the user to a fraudulent site. Against such attacks, it is best to use DNS server protection or antivirus add-ons.