From time to time, we all received phishing emails trying to deceive us to visit unsafe websites or download a malicious link. Some of these phishing emails even threaten to hold people to ransom by using compromised data they have found online by using target victim's previously compromised online data information.
Learn more about different phishing methods below so you can identify malicious communications.
Phising Emails
We all send emails on a day to day basis. Some emails have links which can take us to unsafe sites. Do you know what a dodgy link looks like? We all need to be wary of dodgy links which can put us at risk.
More information on this video courtesy of Monash University
Safety URL
Everyday, we get a torrent of emails. Not every email addressed to us is safe. Some of these emails have URL links which take us to dodgy sites. They can compromise our computer and our personal details. It’s important that we keep a lookout for bad URLs.
More information on this video courtesy of Monash University
Phising emails to get your account details
If you get an email asking to reset your password for library access, delete it! It is a phishing email trying to scam you into giving potential hackers your login credentials. University will never ask you to verify your account details via email. Check out more on how this recent popular attack has been spreading among targeted universities and how the stolen credentials are being used.
More information on this video courtesy of Monash University
Deceptive phising
Impersonating a legitimate company in an attempt to steal personal information and login credentials credentials. Deceptive phishing is the most common type of phishing. In this case, an attacker attempts to obtain confidential information from the victims. Attackers use the information to steal money or to launch other attacks. This will ask you to click a link and verify your account details in an effort to collect personal information.
More information on this video courtesy of Monash University
CEO fraud
Using stolen credentials to pretend to be an organisation's CEO to authorise the transfer of funds to a financial institution of their choice and pretend as one to authorise funds transfer to financial institution of their choice.
More information on this video courtesy of Monash University
Pharming
Directory Name Server attacked to change the IP address of legitimate website changed to redirect you to an unsafe website without your knowledge redirect user even with correct website name. Only connect to websites with valid HTTPS (the green padlock).
More information on this video courtesy of Monash University