What to Do If You Suspect You've Been Phished

Written By Gerri Huck

Sometimes it’s a fake DocuSign link or a message that seems to be from your bank. Well, friend, welcome to the world of phishing scams.

How Cybercriminals Use Phishing Scams to Steal Your Data

Phishing is a type of cybercrime where criminals try to trick you into giving them sensitive information such as usernames, passwords or credit card details. They do this by sending fake emails or creating bogus websites that look legitimate but are designed to steal your data.

Cybercriminals use sophisticated techniques such as social engineering and spoofing to make their phishing attempts seem more convincing. For example, they may create an email address that looks similar to a legitimate one (e.g., support@amaz0n.com instead of support@amazon.com) or include logos and branding that mimic real companies.

What is Phishing and How Does it Work?

Phishing works because people often fall for the bait. You might receive an email claiming there's been suspicious activity on your account and urging you to click on a link or download an attachment immediately. The message will usually create a sense of urgency or fear so that you act without thinking things through properly.

Once you've clicked on the link or downloaded the attachment, malware can infect your computer which allows hackers access into all sorts of sensitive information including banking details and login credentials.

What if I fall for a phishing scam?

The consequences of falling for a phishing scam can be devastating. You might lose access to your bank account or have your credit card details stolen. Worse still, cybercriminals may use this information to commit fraud or steal your identity.

For businesses, the stakes are even higher. A successful phishing attack could lead to sensitive company data being leaked online which would damage the company's reputation and potentially cost millions in fines from regulatory bodies such as GDPR.

What To Do If You Suspect You've Been Phished

If you think you've fallen victim to a phishing scam there are steps you should take immediately:

1) Change all passwords associated with the account that was compromised.
2) Contact your bank or credit card company to report any fraudulent activity.
3) Run a virus scan on your computer to check for malware infections.
4) Report the phishing attempt to the relevant authorities - this will help prevent others from falling victim.

An Ounce of Prevention is Better than a Pound of Cure

1) Be wary of unsolicited emails - if it looks too good to be true then it probably is.
2) Check URLs carefully before clicking on links - make sure they match up with legitimate websites.
3) Use two-factor authentication where possible - this adds an extra layer of security when logging into accounts.
4) Do not delay your software updates - software updates often contain important security patches that protect against known vulnerabilities.
5) Invest in cybersecurity software - antivirus programs and firewalls will help protect against malware infections.

Gerri Huck
Previous

Travel Security: Protecting Yourself on the Go
Next

How to Change the Password on Your Router: A Beginner's Guide