BotNet News

Phishing is a type of attack that uses social engineering tactics to steal personal information or money from victims. It is often carried out via email, instant messages or phone calls and can also occur through social media platforms like Facebook Messenger, LinkedIn InMail and Twitter DMs.

Cybercriminals may forge email addresses to appear legitimate and create links in unsolicited messages that connect to malicious websites designed to mine personal information. They may also use caller ID spoofing to make their calls look like they are coming from a trusted source. They might warn of credit card processing problems, overdue payments or a potential problem with the law to encourage victims to disclose their credentials.

Some phishing attacks involve the use of malware to steal login credentials for online accounts, including those used at work. This type of phishing is known as spear phishing and is a more targeted form of attack than mass emailing.

Never respond to emails that ask for personal information, click on attachments or update personal details online. Instead, refer to your bank statement or the back of your credit card for confirmation of the contact details for the organisation concerned.

It is a good idea to run antivirus software on all computers, to ensure browsers are updated and to avoid using public Wi-Fi networks where possible. It is also worth considering using multifactor authentication (MFA) on all important accounts. This requires additional verification steps, such as a one-time password texted to your phone or a security token, to log in. It is also recommended to have unique, strong passwords for each online account and to change them regularly.