Email Scam-Phishing real sample-must avoid
I thought to share with you guys, about Phishing or email scams, you must be very careful in dealing with such emails. First of all I would like you to know what is Phishing. According to Wikipedia:
“Phishing is the act of attempting to acquire information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public. Phishing emails may contain links to websites that are infected with malware. Phishing is typically carried out by e-mail spoofing or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Phishing is an example of social engineering techniques used to deceive users, and exploits the poor usability of current web security technologies. Attempts to deal with the growing number of reported phishing incidents include legislation, user training, public awareness, and technical security measures.
A phishing technique was described in detail in 1987, and (according to its creator) the first recorded use of the term “phishing” was made in 1995. The term is a variant of fishing, probably influenced by phreaking, and alludes to “baits” used in hopes that the potential victim will “bite” by clicking a malicious link or opening a malicious attachment, in which case their financial information and passwords may then be stolen.”
There are various ways a spammer or hacker can attempt Pishing either by senting email with name of your Bank, your Credit Card, your Merchant, Money transfer, Lottery Scam, Paypal or any means related to electronic transfer of money etc. etc.
Below is the screen shot of on of Phishing email, here someone hides his identity and asks for Paypal details asking to click on the provided link, if user is unaware of Phishing attempt and clicks the link it will take you to fake site of paypal or some other web page asking your Paypal user name and password, if user who is totally unaware about the Phishing he tends to enter his password in order to login to that fake Paypal or other site, which he should not do.
Simply avoid such mails, you should know where you have made transactions as you are owner of your account.
To cross check you should only open such site directly from URL from your secured browser but not from links provided in such Phishing mails.
Attached screenshot one of the Phishing email I received