Technical Terms

In the "Knowledge" section, we have compiled a glossary for you on the topics of risk and receivables management, e-commerce, payment and payment protection.

Contact us
  1. Home
     > 
  2. Wisdom
  3.  > 
    Phishing e-mails

Phishing e-mails

Phishing (password harvesting fishing) is a method of stealing data and identities via the internet. Data thieves target banks, government agencies, or users of online banking systems. Phishing involves redirecting users to a falsified website using falsified emails. These websites are generally exact depictions of the copied website. Customers are under the impression that the duplicated website is the correct website, and fail to notice the phishing activity. Users are typically contacted by email and, for instance, notified of a security gap in a system used by the user. The user is then redirected to the falsified website with a text or image link. Once the customer has reached the phishing site, he is asked for various information, such as the credit card number, account details, social security number, passwords, or email account details. If the user enters the requested details, they are forwarded to the fraudster, who can now use them.

Phishing methods

Data thieves have developed various tricks to obtain user details. For instance, this involves taking advantage of browser weaknesses (exploits). In this case, the user is redirected to the falsified website that issues an incorrect URL. Due to the browser exploit, the user is shown the ostensibly correct URL in the address field. In some cases, falsified websites are created that do not even [missing text] address fields to the user.

What you should watch out for with phishing e-mails

If you receive a suspicious email, you should never enter your personal information into the email forms contained there. If the emails contain links, you should never click on these. Do not respond directly to the e-mail. If you cannot accurately determine whether you are looking at a phishing email, you should call the sender directly, or respond with the email address known to you. Banks or payment service providers will never send emails to customers requesting their details, such as log-in information.

Share now: