“Just like the real world, the on-line computer world also has the sort of people you wouldn’t care to meet,” warns Anita Moore, who owns Computer Start York. “I am in no way wishing to be alarmist or scare people, but I always tell those whom I’m teaching that learning a few rules to stay safe on-line can help you to avoid scams and cons.”
So here are a few of Anita’s top tips… It’s a long page of advice. Make a cup of tea, it’s worth reading slowly:
Phishing scams (pronounced “Fishing”)
Phishing is a common tactic used by hackers and identity thieves to acquire sensitive information like usernames, passwords and bank details. As the name suggests, it’s a means of hooking you in like a hapless fish to reel you in! Usually, this is done by creating a website that looks identical to big brand sites such as banks, social networking sites, eBay and AOL.
I seem to get a lot of emails in my inbox purporting to come from The Halifax; HSBC; The Inland Revenue; ING and other well-know banks and financial service providers. It’s easy to assume these are the real thing – especially if you bank with the people named in the dodgy email!
Typically, an email will arrive telling you your account has been suspended, or the bank “suspects fraudulent activity on your account.” (When I say “your bank” I actually mean “the fraudsters.”) This fraudulent email will direct you to a false website (which will mirror your own bank’s website or your usual log-in page – right down to using the correct logo) where you’ll be asked to enter your personal information into what appears to be the trusted site’s ordinary log-in form. However, your details are actually collected and stored on a database which is likely to be sold on to another fraudster.
Your real bank or credit card company would never ask you to confirm private details in this way on-line. If you’re at all unsure, call your bank or the company in question, and ask them to confirm details over the phone, or in the branch.
Most bank websites have a fraud alert on their own website and an address where you can forward the suspect email. Remember, you can forward an email without having to open it!! It’s useful for the banks to see the latest
scams to help them fight the criminals. THE BEST THING TO DO IS TO DELETE THE EMAIL.
Once you have deleted the email you will be safe. (As long as you have not entered any sensitive private
information and returned it to the email’s sender. If you have, contact your bank immediately and explain what has happened, so they can freeze your account. Forget all notions of feeling silly, just get on the phone and let them know – the sooner the better! Don’t wait until your account has been emptied!)
Of course, let’s not forget that it’s perfectly safe to use our banks’ real websites. Internet Banking is quick and easy and beats standing in a long queue after having fought to find a parking space! Don’t let the cyber criminals dissuade you from the convenience of on-line banking.
So, how do you spot a phishing email?
1. They don’t use your name
Many scam emails begin with a general greeting, such as: “Dear PayPal member, or Dear Account Holder.” If you do not see your first and last name, be suspicious and do not click on any links or buttons.
2. A fake sender’s address
A spoof email may include a forged email address in the “From” field. This field is easily altered, which is why sometimes scam emails appear to come from people you know. Yes, even from your best friends! It’s a horrid thing if your good name is abused in this way. But think: is your best friend really going to write you an email with an odd message heading?
3. A false sense of urgency
Many spoof emails try to deceive you with the threat that your account is in jeopardy if you don’t verify your personal details ASAP. Scam emails may also claim that an unauthorised transaction has recently occurred. Always remember, if it is so urgent, the real organisation will let you know when you go directly to their website rather than clicking on any links in the email.
Most scams rely on two things for success: greed and panic. It’s tempting to act fast to secure something amazing, or defend yourself against a threat. That’s just human nature. And our predicted responses are what scammers rely upon. So we have to be one step ahead and work out if things really are as wonderful or as scary as the email purports.
How can I protect myself?
1. The most important thing to do is protect your computer
Install the latest software versions of anti-virus, anti-spyware and firewall. A firewall acts as a barrier blocking unauthorised access and viruses from the internet.
You can dramatically reduce your vulnerability to internet scammers and hackers by installing simple security software on your computer. A free anti-virus programme can protect you against viruses, Trojans and worms (self-installing programmes that can damage your PC) and other users logging on to your computer and accessing your files.
You can get a FREE Anti-Virus programme to give you full internet security, such as AVG, Microsoft Security Essentials, Avast! or Panda downloadable software. Anita can advise on what’s best for your type of computer.
Top Tips
Never log onto your bank account in an internet café or public library.
Don’t click on any links in an e-mail which suggest they lead to your bank or any other account such as with a supermarket. Instead, only go to your bank account or supermarket account by directly going through your browser.
Check any social networking sites that you’ve joined and use the security settings to restrict access – your date of birth, address, full name and place of birth can be all that’s needed to steal your identity so keep any personal info to a real minimum.
If there’s a website you want to make a purchase from, check their credentials for free first with 192.com – that way you can verify that it’s a genuine company or individual by checking their contact details are real.
Getsafeonline.org offers advice on keeping your details private on social networks.
If you sell an old computer, ask an expert to wipe any personal details from the hard-drive first of all.
Do not use the same password for several online accounts.
Choose a password with a combination of letters and numbers to make it more difficult to guess.
So here are a few of Anita’s top tips… It’s a long page of advice. Make a cup of tea, it’s worth reading slowly:
Phishing scams (pronounced “Fishing”)
Phishing is a common tactic used by hackers and identity thieves to acquire sensitive information like usernames, passwords and bank details. As the name suggests, it’s a means of hooking you in like a hapless fish to reel you in! Usually, this is done by creating a website that looks identical to big brand sites such as banks, social networking sites, eBay and AOL.
I seem to get a lot of emails in my inbox purporting to come from The Halifax; HSBC; The Inland Revenue; ING and other well-know banks and financial service providers. It’s easy to assume these are the real thing – especially if you bank with the people named in the dodgy email!
Typically, an email will arrive telling you your account has been suspended, or the bank “suspects fraudulent activity on your account.” (When I say “your bank” I actually mean “the fraudsters.”) This fraudulent email will direct you to a false website (which will mirror your own bank’s website or your usual log-in page – right down to using the correct logo) where you’ll be asked to enter your personal information into what appears to be the trusted site’s ordinary log-in form. However, your details are actually collected and stored on a database which is likely to be sold on to another fraudster.
Your real bank or credit card company would never ask you to confirm private details in this way on-line. If you’re at all unsure, call your bank or the company in question, and ask them to confirm details over the phone, or in the branch.
Most bank websites have a fraud alert on their own website and an address where you can forward the suspect email. Remember, you can forward an email without having to open it!! It’s useful for the banks to see the latest
scams to help them fight the criminals. THE BEST THING TO DO IS TO DELETE THE EMAIL.
Once you have deleted the email you will be safe. (As long as you have not entered any sensitive private
information and returned it to the email’s sender. If you have, contact your bank immediately and explain what has happened, so they can freeze your account. Forget all notions of feeling silly, just get on the phone and let them know – the sooner the better! Don’t wait until your account has been emptied!)
Of course, let’s not forget that it’s perfectly safe to use our banks’ real websites. Internet Banking is quick and easy and beats standing in a long queue after having fought to find a parking space! Don’t let the cyber criminals dissuade you from the convenience of on-line banking.
So, how do you spot a phishing email?
1. They don’t use your name
Many scam emails begin with a general greeting, such as: “Dear PayPal member, or Dear Account Holder.” If you do not see your first and last name, be suspicious and do not click on any links or buttons.
2. A fake sender’s address
A spoof email may include a forged email address in the “From” field. This field is easily altered, which is why sometimes scam emails appear to come from people you know. Yes, even from your best friends! It’s a horrid thing if your good name is abused in this way. But think: is your best friend really going to write you an email with an odd message heading?
3. A false sense of urgency
Many spoof emails try to deceive you with the threat that your account is in jeopardy if you don’t verify your personal details ASAP. Scam emails may also claim that an unauthorised transaction has recently occurred. Always remember, if it is so urgent, the real organisation will let you know when you go directly to their website rather than clicking on any links in the email.
Most scams rely on two things for success: greed and panic. It’s tempting to act fast to secure something amazing, or defend yourself against a threat. That’s just human nature. And our predicted responses are what scammers rely upon. So we have to be one step ahead and work out if things really are as wonderful or as scary as the email purports.
How can I protect myself?
1. The most important thing to do is protect your computer
Install the latest software versions of anti-virus, anti-spyware and firewall. A firewall acts as a barrier blocking unauthorised access and viruses from the internet.
You can dramatically reduce your vulnerability to internet scammers and hackers by installing simple security software on your computer. A free anti-virus programme can protect you against viruses, Trojans and worms (self-installing programmes that can damage your PC) and other users logging on to your computer and accessing your files.
You can get a FREE Anti-Virus programme to give you full internet security, such as AVG, Microsoft Security Essentials, Avast! or Panda downloadable software. Anita can advise on what’s best for your type of computer.
Top Tips
Never log onto your bank account in an internet café or public library.
Don’t click on any links in an e-mail which suggest they lead to your bank or any other account such as with a supermarket. Instead, only go to your bank account or supermarket account by directly going through your browser.
Check any social networking sites that you’ve joined and use the security settings to restrict access – your date of birth, address, full name and place of birth can be all that’s needed to steal your identity so keep any personal info to a real minimum.
If there’s a website you want to make a purchase from, check their credentials for free first with 192.com – that way you can verify that it’s a genuine company or individual by checking their contact details are real.
Getsafeonline.org offers advice on keeping your details private on social networks.
If you sell an old computer, ask an expert to wipe any personal details from the hard-drive first of all.
Do not use the same password for several online accounts.
Choose a password with a combination of letters and numbers to make it more difficult to guess.