Today, most robberies do not occur on the streets, or from people’s homes and bank robberies are now almost unheard of.

With the increased sophistication that the internet provides, most times the person out to steal from you probably is not even in the same country.

Some clever emails are mass sent that rely on the reader being either un-knowledgeable, tired, busy or trusting.

Here is a Phishing email I received today. It could have purported to be from any bank and on a percentage basis when these are sent I guess they are targeting the percentage of people who use the bank mentioned in the email.

sample phishing email

sample phishing email

As you can see the visible ‘from’ email appears to be from the bank.

The first warning sign is that banks don’t send emails like this.

The second warning sign is that the email has a read receipt – to a Hotmail account that I have boxed in purple. This indicates a lower level of sophistication, but can also be used by the Phishers as a temporary account to see if they can confirm an email addresses validity. DON’T ever click a read receipt on any suspicious email.

Lets ignore the transactions. They are just bait to alarm you into thinking a nice little stack of money has been taken from your account.

There is a link I have boxed in blue that invites you to click to log into your account to see what the hell is going on. By mousing over the link, most email clients will show the URL. This I have boxed in red.

Look like a bank email address to a log-in page? Nope and that should be enough to have you closing the email and deleting it straight away.

What can happen when you click it is you will go to a very convincing imitation of the banks log-in page and when you enter your details a failed log-in will likely be displayed. But the damage is done. The phishers have your user name and password and there is every likelihood that by the time you think to go through your normal log-in process, you will find that some or all of your money has been stolen.

If it has not it is ESSENTIAL they you immediately change your password as often Phisher will also on-sell your details to a third party who may access your account at a later date.

Remember, no Australian bank will ever send an email with a live link. They will always expect you to log in through your normal method.

The lesson here is never trust a suspect email and always be suspicious even if it appears to be from a trusted source but just does not feel ‘right’.

UPDATE: Today I received two more. One purported to be from Australia Post that was asking me to print a label from a .zip attachment (which could contain any form of malicious software).  As we know postal services leave cards in the box (generally) but but now (2016) they are sending emails about your deliveries.

The second was supposedly from FEDEX South Africa with a parcel which contained a cheque for US$500,00. Dis they open it! They were asking for a reply with all my details…the beginnings if identity theft I suspect.


[Slashdot] [Digg] [Reddit] [] [Facebook] [Technorati] [Google] [StumbleUpon]
caricature gifts