Phishing

From Wikimedia Belgium
Jump to navigation Jump to search

Phishing is a frequently occurring internet fraud issue.

You should always pay attention to unexpected, urgent, too good, strange messages, and messages containing links to unknown and doubtful sites.

You should pay attention to financial exposure, theft of identity, or legal fraud.

Examples

[edit]

Fake e-mail

[edit]
  • Register known e-mail addresses
  • Block exotic foreign domains
  • Block exotic languages
  • Be aware of fake promised credit payments from the government, or utility companies
  • Verify the mail headers carefully (some technical knowledge of the SMTP mail protocol might be required)

Related problems can happen with SMS, WhatsApp, and other social platforms ("daddy, my mobile number has changed").

Forward the fake e-mail as an attachment to verdacht@safeonweb.be.

Fake eBox

[edit]

eBox is a popular target for fake messages. Currently this only exists for physical persons. But even then fake messages are circulating.

There is currently confusion about a pending implementation of an eBox for enterprises.

Internet bank payments

[edit]
  • Be careful with fake e-invoices
  • This includes fake QR-codes
  • Even paper invoices can be intercepted with a fake ("new") bank account number
  • Validate the sender identity and the author of the invoice
  • Validate the format and content of the invoice
  • Validate the target bank account number
    • Refuse unexpected invoices
    • Register frequently used bank account numbers
  • Verify at least every month your bank transactions:

Advise

[edit]
  • Verify (secure) internet links
  • Keep your software up-to-date
  • Strong passwords
  • Physical identification
[edit]