ArtsAutosBooksBusinessEducationEntertainmentFamilyFashionFoodGamesGenderHealthHolidaysHomeHubPagesPersonal FinancePetsPoliticsReligionSportsTechnologyTravel
  • »
  • Technology»
  • Computers & Software

How To Protect Yourself from Phishing Scams

Updated on July 10, 2017
Craypoe profile image

Bob Craypoe (also known as R. L. Crepeau) is a musician, writer, webmaster, 3D artist, and creator of the Punksters comic strip series.

"Account Resolution Required" Is a Common Subject Line for Phishing Scams.

"Account Resolution Required" is a common subject line for phishing scams.
"Account Resolution Required" is a common subject line for phishing scams.

What Exactly is a Phishing Scam?

Almost every week I receive at least one e-mail that is actually some sort of phishing scam. The definition of phishing is: The attempt to obtain sensitive information such as user names, passwords, and other personal details for malicious reasons, usually by disguising as a trustworthy entity in an electronic communication. In most cases they are done by e-mail.

To give you some idea as to how many people may come close to falling for them, it has been estimated that approximately 30 percent of phishing e-mails get opened. Also, phishing does not only occur to individuals. Some 85 percent of organizations have suffered phishing attacks. Phishing attacks are not only attempts to access your vital information but they sometimes are used to pass on viruses and malware. In fact, the number one delivery method for malware are e-mail attachments.

A Common Phishing Scam

One common phishing scam is when someone sends you an e-mail that tells you that you need to confirm your information in order to avoid account deletion. The scammer will often send you an e-mail with something like that as the e-mail subject line. When you open the e-mail, there may be something that looks like an official e-mail from a company you may have an account with.

Phishing E-mail Pretending to Be From USAA

An official looking e-mail but it's not. It's a fake.
An official looking e-mail but it's not. It's a fake.

A Recent Phishing Scam Attempt Made on Me

I recently got an e-mail where they were pretending to be from USAA. The e-mail looked legitimate and all of the graphics and everything made it all look so official with their logo and so forth. There was a link provided at the bottom of the e-mail for me to supposedly go to the USAA website. The link, however does not take you to the USAA website, it takes you somewhere else. It looked just like the USAA website but if you look at the URL field in your browser, it listed a different domain. This is how you know that it is a scam.

The URL field is the area in your browser that lists the web address of the location you are at on the Internet. You see, since it didn't say USAA.com in the URL field, I knew that it was a fake.

So what the scammer was trying to do was to get me to log into the website using the user ID and password I would normally use to log into the legitimate site. Once I enter the information, they will have it and be able to log into my account. They would then be able to access my information and do various dastardly deeds that could potentially do a lot of damage to me personally and financially.

How To Detect a Phishing Scam

Most phishing scams start out with an e-mail similar to the one I had received. They usually will tell you that your account is set for deletion if you don't confirm your information. The information they want you to confirm usually starts with your user ID and password. Once they have that information, you will have problems.

One sign that it is a fake is the location where whatever links they provide will take you. So you should always check the URL field in your browser to confirm as to whether or not you are on the correct website. Another way of determining the legitimacy of the e-mail is the e-mail address that the e-mail was sent from. They generally don't match the domain name of the legitimate website they are trying to replicate.

Often the e-mail address will not be one that makes much sense. Often it will be a combination of random letters and numbers. For example, it could be w875d@DomainName.com. The domain name in the e-mail address will not match the site they claim the link will send you to. So, for the sake of argument, why would a credit card company like Chase send an e-mail from a domain name like 543wxt.com or something strange like that?

Sometimes they will try to be a little more clever and do something like chasebank.creditaccountinquiry.net to throw you off. Since credit account inquiry is part of the domain name, you might be more inclined to be fooled. They use chasebank as the subdomain to further confuse you.

These scammers go through a lot of effort and use elaborate means in order to fool people into providing important account information. It's because, upon extracting that vital information, they have the potential to rob you of a lot of your hard-earned money.

Also, the phishing scams that pass on malware and viruses generally involve the use of an attachment. If you get an e-mail from someone you don't recognize and it has an attachment, don't open it. Doing so will be the equivalent of opening up Pandora's Box.

E-mail Address That Phishing Scam is Sent From is Strange

Parts were blackened out to protect various individuals.
Parts were blackened out to protect various individuals.

Where Some Phishing Scams Are Sent From

The recent scams I encountered were similar to the ones mentioned above and when I looked at the e-mail addresses from which the e-mails were sent, the domain name extensions were .edu. I won't say the rest of the domain information because I don't want to bring too much attention to the organizations due to the fact that they were obviously done without the consent of the administrators. But they were domains belonging to universities. So I sent the universities e-mails informing them that someone was trying to do a phishing scam from an e-mail address with their domain name in it.

Other places from which the scamming e-mails are sent are often foreign countries. I know someone who recently got a phishing scam e-mail from a domain with a .pk domain name extension. I looked it up and it was from Pakistan. So many phishing scams come from outside of the United States.

Consider Yourself Advised

I recommend not only to be careful as to taking the steps I listed above to avoid being scammed but also, whenever possible, inform the various organizations involved so that something can be done to avoid those same scams from affecting other people. After all, someone else might not be as careful as you and they may pay some serious and potentially costly consequences as a result.

So if you take a few extra precautions when receiving any e-mail that asks you to confirm sensitive account information, you should be able to avoid a lot of scams others may have the great misfortune to all victim to. Also, don't click on those attachments within e-mails coming from people you don't know. Consider yourself advised.

© 2017 Bob Craypoe

Comments

    0 of 8192 characters used
    Post Comment

    • Abrienne Jonethan profile image

      Abrienne Jonethan 10 months ago from United States

      Thank You..! for such as Article Bob.

    • Jodah profile image

      John Hansen 10 months ago from Queensland Australia

      Thank you, Bob. These phishing scams are becoming more and more common...my spam folder is full of them mostly saying I have won "such and such" and need to confirm my details. Mostly they are from companies I have never had dealings with. Everyone needs to be aware and careful.

    working

    This website uses cookies

    As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.

    For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: "https://hubpages.com/privacy-policy#gdpr"

    Show Details
    Necessary
    HubPages Device IDThis is used to identify particular browsers or devices when the access the service, and is used for security reasons.
    LoginThis is necessary to sign in to the HubPages Service.
    Google RecaptchaThis is used to prevent bots and spam. (Privacy Policy)
    AkismetThis is used to detect comment spam. (Privacy Policy)
    HubPages Google AnalyticsThis is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy)
    HubPages Traffic PixelThis is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized.
    Amazon Web ServicesThis is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized. (Privacy Policy)
    CloudflareThis is used to quickly and efficiently deliver files such as javascript, cascading style sheets, images, and videos. (Privacy Policy)
    Google Hosted LibrariesJavascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy)
    Facebook LoginYou can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy)
    PaypalThis is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy)
    Google AdSense Host APIThis service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy)
    Features
    Google Custom SearchThis is feature allows you to search the site. (Privacy Policy)
    Google MapsSome articles have Google Maps embedded in them. (Privacy Policy)
    Google ChartsThis is used to display charts and graphs on articles and the author center. (Privacy Policy)
    Google YouTubeSome articles have YouTube videos embedded in them. (Privacy Policy)
    VimeoSome articles have Vimeo videos embedded in them. (Privacy Policy)
    MavenThis supports the Maven widget and search functionality. (Privacy Policy)
    Marketing
    Google AdSenseThis is an ad network. (Privacy Policy)
    Google DoubleClickGoogle provides ad serving technology and runs an ad network. (Privacy Policy)
    Index ExchangeThis is an ad network. (Privacy Policy)
    SovrnThis is an ad network. (Privacy Policy)
    Facebook AdsThis is an ad network. (Privacy Policy)
    Amazon Unified Ad MarketplaceThis is an ad network. (Privacy Policy)
    AppNexusThis is an ad network. (Privacy Policy)
    OpenxThis is an ad network. (Privacy Policy)
    Rubicon ProjectThis is an ad network. (Privacy Policy)
    TripleLiftThis is an ad network. (Privacy Policy)
    Say MediaWe partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy)
    Remarketing PixelsWe may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites.
    Conversion Tracking PixelsWe may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisements has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service.
    Statistics
    Author Google AnalyticsThis is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy)
    ComscoreComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy)
    Amazon Tracking PixelSome articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy)