The Dark Side of Social Media: How Phising Hooks Users

THE DARK SIDE OF SOCIAL MEDIA How Phishing Hooks Users GOING PHISHING Phishing is the term used for the act of tricking someone into handing over his/her login credentials in order to gather and exploit personal information. Remember: this can happen to anyone. Common misleadings on social networking sites include: Stealing your personal information Stealing your financial information Attacking your social networking Stealing your identity contacts Understanding how it works: Four steps scammers take to hook you Step 1 Generally, phishing starts when a scammer sets up a fake website that looks realistic enough to victims who view it. Sometimes, these sites can be copies of well-known sites. Phtml c:/- Step 2 A scammer then goes phishing and will hack into a social network user's account, sending out messages to friends or con- nections, unbeknownst to the user. Email: USER@2 Pass: •... Step 3 These messages look genuine and tug on recipient's emotions. Messages with links to breaking news, celebrity stories, disaster victim donations, or even adorable puppy New Message Adorable Puppy videos can be used to lure the user to click through. Step 4 By clicking on the links or even giving out credit card information for a donation, malware or viruses Messages CAdorable Puppy downloaded and the user's system and sensitive informa- tion are compromised. I| 0:20/2.20 | Fortunately, simple education and awareness can help fight phishing attacks and scams and keep us all using social media safely. Sources: movements.org. 201IO antiphishing.org. 2010 What do the stats say? LOG IN f 1% 50% 50% of the more than 500 million active Facebook users log on at least once a day from their office, home, coffee shop, school, or from smartphones. This number opens 1% of Facebook users have been victims of phishing attacks. Seem underwhelming? That is actually 5 million Facebook users. various avenues for scammers. Most targeted industry sectors receiving phishing attacks in 2010 etc. BANK •Payment Services Others Financial 38% Government CLASSIFIEDS 1% 33% 4% 3%. 4% 5% 5% Classifieds Social Networking Auction Retail/Services Gaming Microsoft recently reported that number of phishing attacks seeking the personal information of social networking users online rose from 8.3% during January 2010 to 84.5% during December 2010. In December 2010, 43% of all social networking users had been on the receiving end of phishing attacks, more than double the figure in April 2009 (21%). 43% Jan. 2010 8.3% 21% Dec. 2010 84.5% Apr. 2009 Dec. 2010 Source: sophos.com, 2011 HOW TO AVOID SOCIAL MEDIA PHISHING ATTACKS If phishing can happen to anyone using social media., how can you protect yourself? Here are a 10 tips: NEWS http://www. PHISHING |SCAM Accept that you are not immune to phishing. Pay attention to existing phishing scams. Always keep an eye on your browser's address bar. ! Pass: •.... Type the address of your social networking site directly into your browser or use your personal bookmarks. Create unique passwords for every site you use. Use caution when you click links. New Mascana Fro New Message Hi From: Dad Adorable Puppy Accept PHISH as a friend Accept Deny Play Don't trust that a Do not allow social Be selective about who message or post is really from who it says it's from. networking services to scan your email address book. you accept as a friend on a social network. Assume that everything you put on a social networking site is permanent. Source: microsoft.com, 20II Z ZONEALARM by Check Point ....