Mr. Desai lost Rs.11 lakhs in a just matter of minutes. All he did was to answer an innocuous looking e-mail - supposedly from his bank - and 10 mins later Rs.11 lakhs went missing from his account.
Welcome to the world cyber crime and their trick – Phishing.
How was Mr. Desai duped?
Phishing is the commonly used modus operandi to extract our account sensitive information such as passwords, PINs, account no., personal information etc. through fake e-mails.
These emails look very authentic and appear as if coming from our bank asking us to verify personal details by clicking on a link. The e-mail and the website layout, where we are transferred when we click on the given link, look exactly like the bank’s original website. Since the two are so similar, it is very easy to assume that it is genuine email/website. Even the URL address of the link given looks quite genuine.
These mails would usually display some kind of urgency e.g. Alert, Urgent etc. or even try to lure us with some prize.
So we would inadvertently type-in all the details. The data entered on this phony or spoofed website is captured by the fraudsters. Thereafter, it is very simple for them to log into our account and transfer out all the money.
This is what Mr. Desai innocently did and was duped.
Another strategy is to install some malicious software on our computer by asking us to download some so-called security software. This software then tracks whatever we type and sends this information to the fraudster, who can then extract the relevant details and start misusing our bank account.
Don’t be the next Mr. Desai
1. Don't disclose any confidential information. Even Banks will NEVER ask for such details.
2. Check whether it is a secured https:// website (and not the normal http:// website)
3. Do not click on the link in the emails
4. Do not open any attachments
5. Use virtual keyboard to type in your details
6. Secure your computer
7. Use your password, computer & internet carefully
Phishing is becoming common. So the fraudsters may even try newer tricks. Therefore, it would be prudent if we zealously guard our account details.
Welcome to the world cyber crime and their trick – Phishing.
How was Mr. Desai duped?
Phishing is the commonly used modus operandi to extract our account sensitive information such as passwords, PINs, account no., personal information etc. through fake e-mails.
These emails look very authentic and appear as if coming from our bank asking us to verify personal details by clicking on a link. The e-mail and the website layout, where we are transferred when we click on the given link, look exactly like the bank’s original website. Since the two are so similar, it is very easy to assume that it is genuine email/website. Even the URL address of the link given looks quite genuine.
These mails would usually display some kind of urgency e.g. Alert, Urgent etc. or even try to lure us with some prize.
So we would inadvertently type-in all the details. The data entered on this phony or spoofed website is captured by the fraudsters. Thereafter, it is very simple for them to log into our account and transfer out all the money.
This is what Mr. Desai innocently did and was duped.
Another strategy is to install some malicious software on our computer by asking us to download some so-called security software. This software then tracks whatever we type and sends this information to the fraudster, who can then extract the relevant details and start misusing our bank account.
Don’t be the next Mr. Desai
1. Don't disclose any confidential information. Even Banks will NEVER ask for such details.
2. Check whether it is a secured https:// website (and not the normal http:// website)
3. Do not click on the link in the emails
4. Do not open any attachments
5. Use virtual keyboard to type in your details
6. Secure your computer
7. Use your password, computer & internet carefully
Phishing is becoming common. So the fraudsters may even try newer tricks. Therefore, it would be prudent if we zealously guard our account details.
