ArtsAutosBooksBusinessEducationEntertainmentFamilyFashionFoodGamesGenderHealthHolidaysHomeHubPagesPersonal FinancePetsPoliticsReligionSportsTechnologyTravel
  • »
  • Technology»
  • Internet & the Web

Where to Report Phishing Scams

Updated on October 27, 2014

Recognizing and Avoiding Phishing Attacks

Typically, phishing involves an email purporting to be from some legitimate agency, like a bank, investment firm, lottery commission, or the IRS. These emails will request information, often directing the user to a bogus web site. Such sites in turn will resemble the agencies' real web sites. That's why it is important not to follow links embedded in emails unless you're sure of the identity of the sender. The crooks use the information gathered this way to access (and empty) victims' accounts or steal their identity.

Being able to recognize and avoid phishing attacks is getting tougher all the time. The scammers are adopting crimeware kits that make it easier than ever to generate focused, targeted phishing attacks, including the emails and the bogus websites. The much-publicized 'zeus' crimeware kit is an example, which uses infected computers to spread more phishing attacks, viruses, and other malware.

Phishing for your Sensitive Information

By Stomchak (Own work) [CC-BY-SA-3.0 (http://creativecommons.org/licenses/by-sa/3.0) or GFDL (http://www.gnu.org/copyleft/fdl.html)], via Wikimedia Commons
By Stomchak (Own work) [CC-BY-SA-3.0 (http://creativecommons.org/licenses/by-sa/3.0) or GFDL (http://www.gnu.org/copyleft/fdl.html)], via Wikimedia Commons | Source

Report Phishing to the Organization Named in the Email

Most banks, online merchants, and many government organizations offer specific ways to report the fraudulent use of their names. Their websites will usually instruct users to forward any suspicious emails to specific accounts. They will examine the emails, and use the information to help protect their users or customers. Sometimes they will report their analysis back to the persons reporting the emails, but not always. Some examples of specific email addresses for reporting phishing follow.


  • PAYPAL: forward fraudulent emails claiming to be from Paypal to spoof@paypal.com. If you find (or are directed to) at a site that says it is a Paypal site, but you have doubts, report the fake Paypal site here.

  • EBAY: forward suspected phishing emails to spoof@ebay.com.

  • Bank of America: forward suspicious emails to abuse@bankofamerica.com.

  • IRS: Any suspicious emails should be forwarded to phishing@irs.gov.

Most agencies have similar addresses for reporting phishing and other types of Internet fraud. To find them visit their web sites (do not follow links in suspected emails). On their sites, you can usually search for 'reporting fraud,' 'reporting phishing,' or something similar. You can also check their 'contact us' links available on most pages, to see if they list a contact for reporting fraud.

Report Phishing to Law Enforcement and Government Agencies

Aside from reporting phishing attacks to the various organizations whose names the scammers are using illegally, Internet fraud should be reported to one or more government agencies. They use the reports for research, law enforcement, and for educating the public on avoiding the scams.

In the United States, forward phishing attempts and fraudulent (spoofed) web sites to phishing-report@us-cert.gov. If you suspect that you have been a victim of Internet crime, including falling for a phishing attack, please report it to the Internet Crime Complaint Center (IC3). This is a partnership between the FBI, the National White Collar Crime Center, and the Bureau of Justice Assistance. They will evaluate the complaint, and forward it to the correct federal, state, local, and or international enforcement agencies. Victims should also call the FTC’s identity theft hotline toll-free at 1 (877) IDTHEFT, whose counselors are trained to help victims and take their complaints.

In the United Kingdom, please see Consumer Fraud Reportings UK page.

Finally, Consumer Fraud Reporting also has a listing of government fraud centers around the world (scroll to the bottom of the page).

Phishing Survey

Have you ever fallen victim to a Phishing attack?

See results

Final Tips on Phishing and Spam

Remember, these days almost no reputable financial institution, retailer, or government agency will ask you for sensitive information like credit card numbers or account passwords in an email. Emails directing you to a web site to input such information should also be suspect. The only thing keeping spammers and scammers going is the fact that enough people click the link, follow the directions, or buy the product to make it worth sending out millions of junk emails every day. Fight back. Don't fall for it, report it!

Comments

    0 of 8192 characters used
    Post Comment

    • Robert Sacchi profile image

      Robert Sacchi 3 years ago

      Thank you great tips and information.

    working

    This website uses cookies

    As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.

    For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: "https://hubpages.com/privacy-policy#gdpr"

    Show Details
    Necessary
    HubPages Device IDThis is used to identify particular browsers or devices when the access the service, and is used for security reasons.
    LoginThis is necessary to sign in to the HubPages Service.
    Google RecaptchaThis is used to prevent bots and spam. (Privacy Policy)
    AkismetThis is used to detect comment spam. (Privacy Policy)
    HubPages Google AnalyticsThis is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy)
    HubPages Traffic PixelThis is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized.
    Amazon Web ServicesThis is a cloud services platform that we used to host our service. (Privacy Policy)
    CloudflareThis is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy)
    Google Hosted LibrariesJavascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy)
    Features
    Google Custom SearchThis is feature allows you to search the site. (Privacy Policy)
    Google MapsSome articles have Google Maps embedded in them. (Privacy Policy)
    Google ChartsThis is used to display charts and graphs on articles and the author center. (Privacy Policy)
    Google AdSense Host APIThis service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy)
    Google YouTubeSome articles have YouTube videos embedded in them. (Privacy Policy)
    VimeoSome articles have Vimeo videos embedded in them. (Privacy Policy)
    PaypalThis is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy)
    Facebook LoginYou can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy)
    MavenThis supports the Maven widget and search functionality. (Privacy Policy)
    Marketing
    Google AdSenseThis is an ad network. (Privacy Policy)
    Google DoubleClickGoogle provides ad serving technology and runs an ad network. (Privacy Policy)
    Index ExchangeThis is an ad network. (Privacy Policy)
    SovrnThis is an ad network. (Privacy Policy)
    Facebook AdsThis is an ad network. (Privacy Policy)
    Amazon Unified Ad MarketplaceThis is an ad network. (Privacy Policy)
    AppNexusThis is an ad network. (Privacy Policy)
    OpenxThis is an ad network. (Privacy Policy)
    Rubicon ProjectThis is an ad network. (Privacy Policy)
    TripleLiftThis is an ad network. (Privacy Policy)
    Say MediaWe partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy)
    Remarketing PixelsWe may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites.
    Conversion Tracking PixelsWe may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service.
    Statistics
    Author Google AnalyticsThis is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy)
    ComscoreComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy)
    Amazon Tracking PixelSome articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy)