Cybersecurity For Dummies, 2nd Edition
Book image
Explore Book Buy On Amazon
Keep your eyes open and you’ll avoid a lot of what the internet has to throw at you attempting to access your passwords and personal information.

Basics of phishing scams

Eventually, you’ll receive an email that says it’s from your bank, eBay, PayPal, or a similar website announcing a problem with your account. Invariably, the email offers a handy link to click, saying that you must enter your username and password to set things in order.

Don’t do it, no matter how realistic the email and website may appear. You’re seeing an ugly industry called phishing. Fraudsters send millions of these messages worldwide, hoping to convince a few frightened souls into typing their precious account name and password.

How do you tell the real emails from the fake ones? It’s easy, actually, because all of these emails are fake. Finance-related sites may send you legitimate history statements, receipts, or confirmation notices, but they will never, ever email you a link for you to click and enter your password.

If you’re suspicious, visit the company’s real website by typing the web address by hand into your browser's address bar. Chances are good that the real site won’t list anything wrong with your account.

Basics of card verification scams

Card verification scams are usually done by phone or via email. The person calling or writing says that he needs to verify your credit card information for your account at some online merchant or pay service.

He tells you that the server containing the credit card numbers has been hacked into and all the data on the credit card accounts has been lost, or he tells you that he’s verifying your information to make sure that it’s current. The caveat is that if you don’t provide the information, he’ll cancel your account.

If the scam is done by email, the URL provided takes you to a site set up by the thieves, and when you enter the information to “verify” your credit card number, name, and expiration date, they capture the information on their server.

Then — you know what happens — your card is used to make fraudulent charges. When the scam is done by phone, the thief writes down all the information needed to use your credit card for fraudulent purposes.

To avoid this scam, don’t give the thieves the information either on the phone or online.

About This Article

This article is from the book:

About the book author:

Joseph Steinberg is a cybersecurity and emerging technologies advisor with two decades of industry experience. Steinberg is one of only 28 people worldwide to hold the entire suite of advanced information security certifications (CISSP, ISSAP, ISSMP, and CSSLP). He has invented various cybersecurity-related technologies, which are cited in more than 400 U.S. patent filings.

This article can be found in the category: