Posted by TechGeek on August 3, 2011
If you love internet surfing and you spend most of the time on Internet then you should know 2 security terms for your safety, Phishing and Vhishing. Both of these terms take the advantage of social engineering attack vector. Many people become victims to Phishing or Vhishing scams losing their valuable information for example credit card number. Phishing is an act of tricking someone into providing their confidential information such as usernames, passwords and other sensitive information. Generally, phishing is carried out via e-mail messages or on websites which claims to be a legitimate site.
Phishing takes the advantage of human nature to lure victim to provide sensitive information. Typically, an attacker sends an email to the victim convincing them it comes from a legitimate website. An attacker also creates or copy web pages that look like legitimate company web pages and then send emails to victims asking them to log on to the site and update account information. A poor victim with limited knowledge fails to such email scam and enters personal informational exposing his/her identity to the attacker. Many times you will come across fake or duplicate websites which looks exactly the same like original legitimate site asking to login. Lots of people have lost their credit card information in the past and lots of others are falling to Phishing.
Do read: Stay away from Phishing sites.
A new term has been involved called Vhishing which combines email with phone. This is also called as voice-phishing which takes place via bogus voice messages and phone calls. Generally, every bank company started sending emails to their customers saying about Phishing scams like “Bank will never ask you to divulge any confidential information over e-mail …don’t respond to such emails”. Due to such emails from banks, people get to know not to click a link in an unsolicited email. To overcome this, attacker started new technique to lure the victim to provide the confidential information using phone.
Instead of being directed by e-mail to a Web site, an e-mail message asks the user to make a telephone call. The call triggers a voice response system that asks for the user’s credit card number or other information. A person actually falls to Vhishing scam as the emails contain a telephone number and he/she generally assumes that it came from legitimate site. People are used to entering credit card numbers over the phone, this technique can be effective.
Do read: Facebook iPhone give away scam
Both the scams are very dangerous and you can lose confidential information over the Internet. Once again for readers, no legitimate website sends an email to change or update the information. Never fall victims to such fake emails or fake calls.