Menu
 Home
 Local News    
 Global News
 Technical & Product News
 Opinions
 Contact Us
 Subscribe/Unsubscribe
 
 Publications
 ICT World
 Cable Talk
 Computing S.A.
 Network World
 The Channel
 IT users handbook
 
 Sponsors
 ICT World Company Directory
 
 Partners
 CareerJunction
 Johnnic Mag Division
 
 Privacy Policy
 Privacy Policy
 
   
   

Anti-phishing tips from Panda

Date: 12 January 2007
Issue: Two hundred and seventeen (8/1/07 -12/1/07)
(ICT World)
Category: Global News
PandaLabs, Panda Software's virus detection laboratory, has predicted that theft of confidential data on the Internet will become one of the most significant IT threats over the coming year.

For this reason, PandaLabs is offering a set of simple tips to safeguard the confidentiality of users financial data.
 
Phishing is a type of fraud that involves e-mail messages designed to redirect users to malicious Web sites especially designed to steal banking data from unwitting users. In this way, 'phishers can steal passwords and personal details to spoof users identity and use it fraudulently.

They use the name and corporate image of real companies in order to gain users confidence and carry off the fraud. To avoid this, it is vital to make sure that all transactions are carried out in secure environments.
 
The first aspect to take into account is the fact that your bank will never contact you via e-mail to ask you for any passwords. You should delete any messages that you receive asking for your personal details, or including a link that takes you to a Web page where you are prompted to enter them. These are most probably fraudulent messages.
 
Make sure that the Web page that you are visiting actually belongs to the bank that you want to visit. Pay attention to the Web page domain, and check that there are no differences with the real domain of your banks Web page. Make sure that your connection is safe. To do this, check that there is a little closed padlock displayed on the status bar of the browser, and that the Web address begins with https://. These are clear indications of a safe connection. If you are in doubt, check that the Web page has a valid certificate by double-clicking on the padlock.
 
Another way to make sure you have established a safe connection to the companys real Web site is to type the entitys full Web address directly in the browser; never access it through hyperlinks that might point to fraudulent Web sites that could enable data theft.
 
It is also advisable to check bank statements periodically to make sure that there havent been any irregular movements or transactions from your account. If you see any unaccountable operations in your statement, we recommend that you contact the bank through which transactions were made, in order to get more detailed information about them.
 
If once you have checked all of these elements you are still in doubt, you can always find out if  what you are about to do is safe by making a phone call to the bank, explains Mikel Pérez, director of the Malware Detection Department at Panda Software. In any event, the best measure is to have a good anti-virus with anti-phishing technologies that protects against fraud.