What is a phishing email?
You may have received an email falsely claiming to be from the company or another known entity. This is called “phishing” because the sender is “fishing” for your personal data. The goal is to trick you into clicking through to a fake or “spoofed” website, or into calling a bogus customer service number where they can collect and steal your sensitive personal or financial information.
You need to be a proactive contributor by reporting suspicious-looking emails to the banks or company that the email is about. See if they have an Abuse Department and send it to them.
Most big companies have a security team who work to identify if the email you received is a malicious email.
Most Businesses will carefully review the content reported to them to certify that the content is legitimate. They will generally contact you if they need any additional information for investigating the matter. Please take note to the security tips provided below as they may help to answer any questions that you may have about the email you are reporting to them.
Most Businesses will Always:
– Address their customers by their first and or last name or business name of their account.
They Generally Will Never:
– Send an email to: “Undisclosed Recipients” or more than one email address.
– Ask you to download a form or file to resolve an issue.
– Ask in an email to verify an account using Personal Information such as Name, Date of Birth, Driver’s License, or Address.
– Ask in an email to verify an account using Bank Account Information such as Bank Name, Routing Number, or Bank Account PIN Number.
– Ask in an email to verify an account using Credit Card Information such as Credit Card Number or Type, Expiration Date, ATM PIN Number, or CVV2 Security Code.
– Ask for your full credit card number without displaying the type of card and the last two digits or four digits. Or similar to this.
– Ask you for your full bank account number without displaying your bank name, type of account (Checking/Savings) and the last two digits. Or similar to this.
– Ask you for your security question answers without displaying each security question you created.
– Ask you to ship an item, pay a shipping fee, send a Western Union. Western Union has a very bad name for allowing Scammers or Spammers to transmit money via their system without due care.
Any time you receive an email about changes to your account/s, the safest way to confirm the email’s validity is to log in to your account, and go to where where any of the activity reported in the email will be available to view. If there is nothing in the site itself, then take the email as spam.
DO NOT USE THE LINKS IN THE EMAIL RECEIVED TO VISIT THE WEBSITE.
Instead, always go to a browser window like I.E or firefox etc and enter www.website.com into your browser to log in to your account. ( where website.com is the web address of the bank or other account the email is about)
Oh NO You Didnt Did You?
Help! I responded to a phishing email!
If you have responded to a phishing email and provided any personal information, or if you think someone has used your account without permission, you should immediately change your password and security questions.
You should also report it to the Bank or company immediately and they will help protect you as much as possible.
Contact the appropriate business and discuss the email with them. They will help.
If you do this, you will help make a difference.
Every email counts. By forwarding a suspicious-looking email to the business involved, you have helped keep yourself and others safe from identity theft.