Friday, April 27, 2007

Phishing-Pharming Scams-The Facts

Phishing and Pharming. Everyone is somewhat familiar with phishing, but pharming -- maybe you need a little information. Anyway, that is what I thought for myself. We are need to be ever vigiliant in both areas online and offline.

Online -- If you are on the Internet a major part of the time, then you are aware that you need to protect yourself online. Those new to the Internet realm, may not be so aware-especially if their experience has been within a corporate setting.

Offline - maybe people are not as informed - but aware. Even though I did not elaborate in my article about how pharmers/phisher obtain your info and identity, let me enlighten you. Offline, it is wise to use a micro shredder to shred your important information that has your name, address, account information before throwing it out to the dumpsters. Unscrupulous individuals can pick through your trash looking for bank statements, credit card states, financial records, etc-purpose to sell or to steal your identity. And if you watched CNN lately, you would have seen an individual who is still trying to clean up her identify after seven years-after someone stole her identity.

Just to add, it's wise to get yourself a shredder-and preferably a micro shredder. Straight cut and cross-cut shredders can still be put back together.

So hopefully, this article will enlighten you to what phishing and pharming is, and how you can try to protect yourself online. One final thought, phishing and pharming protection has to be a collaborative effort between consumer and business -- working together we can be better informed and protected.


Phishing-Pharming Scams-The Facts?
By Vickie J. Scanlon


With the Internet becoming more of an intregal part of many people's busy lives, it is becoming more important to be aware of how you can and should protect yourself. Two different scams to acquaint yourself too is the pharming and phishing scams. They have been around for awhile, but both are becoming more prominent as times goes by. So it is wise to learn what you can about them, as well as, take appropriate action when needed.

Phishing Scams

Phishing Scams are scams in which you asked within an email to click on the provided link so that you can verify the information that they feel may have been compromised. It could be your online banking, paypal, investments accounts, etc. with the purpose of capturing your account number or password.

How do you protect yourself from Phishing Scams

With a Phishing Scam you have to always be on your toes. For example, if you receive an email requesting that you log-in to your PayPal account because they feel that it may have been compromised. They will supply you with a link to click on to get you to the site. The site may look authentic, but it is not. Some precautions can be taken. Such as:


1. Do not click on the link they provide.
2. Open up a session of the Internet and put in your stored link -NOT THE LINK provided within the email. And verify the information.
3. Contact the company that you are doing business with to make them aware of what is going on - this will allow them to notify other people that they do business with, with what is happening.


Pharming Scams

Pharming Scams is like phishing with a slight twist to the whole game. With the pharming scam, you are redirected from your legitimate site to that of the fake site.

How do they get in? They do it in several ways:

1) through an email virus- in which they install a small programs that will direct the user to the fake site. Once the small program is in place, they will use a Keylogger virus. The keylogger virus tracks the users passwords that they (the user) key in with.
2) The other methods involves the pharmer interfering with your DNS. When you type a Web site's name into your browser, your server will read the name, look up its numeric address and take you to the site. This is where the Pharmers interfere with that process. They change the real site's numeric address to the fake site's numeric address. The Pharmers can interfere with your DNS only when you use the "http" and not the "https" for your contacting url.


How to Protect Yourself

If you are on the internet often or do any financial transactions online, it is wise to incorporate as much security as possible. Here are some helpful tips:

1. Use adware/spyware software daily
2. Use anti-virus software
3. Use software that identifies the site, determines the length of time they have been online and allows you to look at their site report. Most software options check against an updated database of blacklisted phishing sites and IPs. One example is Netcraft- it's compatible with Firefox or Internet Explorer.
4. Internet security software
5. Use Firefox or Opera for added security
6. Password Management Software -- helps to eliminate keylogging-and encrypts your passwords. Example: Roboform - ten or less it will be free to use. If you have over 10 you will need to pay a one time charge after 30 days.
7. Always use a secure website. SSl encryption with beginnings like: https://
8. Make sure your browser is up-to-date and have all necessary up-to-date security patches.


What are Businesses Doing To Protect You?

Yes, businesses are concerned with your security. Why? They are on the losing end as well-through lose money and business. So what are some companies doing to protect you.

1. Some business only allow so many attempts into your site in a day. Then you have to wait for the next day to do business.
2. They monitor your IP address for safety.
3. Eliminate all pop-ups during sign-up and sign-in.
4. Some eliminated emailing together.
5. Server side software to protect their customers and employees who use internal or private web-based systems


What to Do If You Are A Victim of Phishing or Pharming

If you feel you are a victim of phishing or pharming don't ignore it, or think nothing will happen. Be pro-active and set things in motion to protect yourself. Such as:

1) Notify the company immediately. They will tell you how to proceed. And be prepared to create a new user-id and password.

2) Depending on the severity of the breach-Report an Initial Security Alert to one of the three consumer agencies listed below:
a) Equifax-www.equifax.com
b) Experian-www.experian.com
c) TransUnion - www.transunion.com

Upon contacting one of the agencies, they will notify the other two. The Initial Security Alert puts an alert on your credit file, as well as, alert creditors to follow certain procedures to protect you. This is protecting your identity.

To conclude, if you work on the Internet or utilize the Internet a lot on a daily basis, do not ignore your security. Swallow hard, get the software you need to protect yourself, your family and online business. And as always, be ever vigilant.



Vickie J Scanlon -- Visit her site at: My Affiliate Place for tools, how to info of affiliate and internet marketing, Report Your Scams, tech accessories, security software and computers for the online business.

No comments:

Post a Comment