SLAC Computer Security
Search SLAC

Phishing: Don't Take the Bait

Internet criminals are using a technique called "phishing" to obtain personal information from unsuspecting Internet users. Phishing typically involves sending an e-mail seeking personal information while falsely claiming to come from a legitimate source. Users are often prompted to update or validate passwords, credit card details, Social Security numbers, PIN numbers, or other sensitive information.

Spoofed messages claiming to be from prominent government and banking entities have included threats of legal action and jail for not responding. Some SLAC users have even received phishing e-mails disguised as death threats.

How to protect yourself:

1. Caveat emptor ("buyer beware") should be watch words for use of the Internet.
- Never give out any personal or financial information unless you are certain about the authenticity and online security policy of the organization with which you are dealing.
- Use your "known good" URLs for the banks, shopping sites, payment sites, etc.
- Conduct transactions securely. Ensure that "https" appears before the URL, rather than "http." Read more...

Above article appeared in Apr. 11, 2008 SLAC Today.

Owner: SLAC Computer Security
Last Updated: 07/22/2010
Feedback: Please send to
Computer Security Feedback