Tag

Cyber security

7 Tips to Avoid Being “the Catch” of a Phishy Email

By Seasonal, Uncategorized

92.4% of malware is delivered via email, and with the influx of holiday emails, it’s no wonder that this time of year is a favorite for hackers. In between the hustle and bustle of the season, it is easy for a phishy email to slip right through the cracks — that is, if you’re not careful.

With phishing such a common hacker tactic, could you have been a target before?

The most common scams involve receiving an enticing deal from your favorite “retail store,”  or an urgent message from your “phone company” or “bank” threatening to cancel your service if you don’t provide them with personal information. It can even happen in the workplace as well. Has your boss ever sent you a last minute message requesting that you send critical documents to them? These can all be telltale signs that an email just doesn’t smell right. Instead of taking the bait, be sure to independently verify the email sender and investigate before clicking a link, downloading an attachment or sharing personal information about yourself.

We want you to be aware of how to spot a phishing email, so we have provided you with 7 simple ways to spot an email red flag. These can help you determine if an email is legit or really sent from a hacker trying to ruin your holiday cheer.

Click the link below to view our 7 Email Red Flags. This sheet can also be printed and shared!

7 Email Red Flags

For more information on common hacker practices such as phishing, vishing, pharming, and smishing, check out our Social Engineering series.

Don’t fall for these top holiday scams

By Uncategorized No Comments

Even though the two biggest shopping days of the year are now over, it is still just as important to stay vigilant throughout the entire holiday season. Black Friday and Cyber Monday aren’t the only shopping days that fraudsters target, as the full holiday season lasts until New Years. In fact, fraud attempts last year increased by 22% in the period from Thanksgiving Day to December 31, while the number of overall transactions increased by 19%.

So, for those who haven’t checked everyone off their list (we’re with you!), here are a few things to look out for. 

7 holiday scams you may not have heard of:

1. Gift Card Scam
In the first nine months of 2018, consumers lost $53 million in gift-card scams. This scam has increased sharply from $20 million in 2015.

Make sure that the gift cards you purchase have not been tampered with. Check to see what other gift cards look like, inspecting the seams, PINs and anything else that could be amiss. Also, online gift cards can be scams as well. If you receive an unsolicited email or link claiming to be a gift card, do not automatically open it. Investigate further and contact the gift card purchaser to verify they did indeed send it. Furthermore, if you receive a call from a service provider saying that you can pay them in the form of a gift-card hang up. 

2. Counterfeit Goods Scam 
A surprisingly low price and a sketchy seller are big red flags.  When a price seems “too good to be true” on a name brand product, it’s likely to be a fake. Make sure to purchase products directly from the brand owner and their trusted authorized retailers. If a manufacturer can’t profit with such a low price, that’s a good clue you aren’t getting the real deal.

3. E-Holiday Card Scam
Few people think before opening up an e-holiday card. If you open a “fake” one, it can install malware on your device or steal your personal information. Spelling mistakes are a common sign of a fake e-card as well as if the sender is not someone you know. You should always avoid clicking on anything from a source that you don’t know. Be on the look out for malware on your device by keeping your security software up to date. 

4. Corrupt Coupon Scam
The internet loves to overwhelm you with hot deals and sales. Many of those are actually fake deals created by hackers trying to entice you with a sense of urgency such as “Offer Ends Soon!”. Beware that the link to the sought after coupon may actually be dangerous malware that can infect your device and steal your identity. If the coupon asks for your personal information or forces you to buy something in order to receive a deal later it may be a scam. 

5. Charity Scam
Many people feel that the holidays are a great time to give back. Don’t be easily influenced by social media posts claiming to give money to charity. The best bet for charitable donations is to give directly to a reputable and known organization.

6. Shipping/Billing Fraud
Billing fraud occurs when the victim’s address is connected to the payment account used to purchase the stolen goods. This form of fraud increased by 34% in the last year. 

Shipping fraud occurs when a criminal uses their address for the delivery of stolen goods purchased online. Rates of shipping fraud increased 37% in 2017. From a regional perspective, the Western U.S. saw a nearly 60% increase in attack rates for shipping fraud, according to Experian. 

 

7. Travel Scams
Do not click on suspicious ads claiming to have travel sales for you. Stick to reputable travel websites such as Kayak.com, Expedia, or Google Flights that offer options for comparing competitive pricing. Additionally, it is always a good idea to purchase your tickets directly through the airline’s website when you are ready to book your trip.

What to do if you’re a victim of Identity Theft

Contact iLOCK360.  As an iLOCK360 paid subscriber, our certified U.S.-based Identity Theft Restoration Specialists will work on your behalf to restore your good name. A Specialist assigned to your individual case will guide you through each step of the restoration process and ensure that your case is handled with care. With your consent, the Restoration Specialist can help you with closing accounts, re-ordering cards, placing a fraud alert with each of the three credit bureaus, and removing fraudulent activity from your credit report. Restoration Specialists offer robust case knowledge in both credit and non-credit fraud situations. Our dependable identity restoration services will reduce the time and effort you’ll spend restoring your good name. 

Call 855-287-8888 to speak with an Identity Theft Restoration Specialist. 

How Else Can iLOCK360 Help?

Did you know that your iLOCK360 membership can help alert you if your personal information may have been bought or sold by hackers online?

iLOCK360’s proprietary CyberAlert can help you monitor your identity 24/7/365 for possible compromise on the Dark Web (i.e. the anonymous online marketplace where illicit activities occur). If your monitored information is found bought or sold online you will be automatically alerted so that action may be taken to address the issue.

CyberAlert’s available monitored features include: Bank Accounts, Credit/Debit Cards, Email Addresses, Phone Numbers, Medical ID Numbers, Social Security Number, Driver’s License and Passport.

Want to know if your information may have been compromised by a cybercriminal on the Dark Web? Be sure to log into your iLOCK360 account to setup this feature today.

Don’t bargain away your identity during Black Friday

By Uncategorized No Comments

After stuffing ourselves with turkey and cranberry sauce, many dream of losing sleep, battling crowds and racing through the aisles of Target to grab the best deals of the season. That’s right, Black Friday (and Cyber Monday) has become a much anticipated holiday tradition. In fact, the leisurely days of food coma and football are declining as now more than 174 million Americans take part in this annual retail shopping frenzy. And if you’re like the vast majority (93%) of shoppers connecting to and interacting with technology during this year’s shopping season, you can be especially vulnerable to online fraud and identity theft. 

So, before you start checking everyone off your list, make sure to read our 9 tips for protecting your identity when shopping online this holiday season. 

9 Tips to help protect your identity when shopping online this holiday season:

1. Batten down the hatches
Verify that the antivirus software on your device is working and has been updated.

2. S is for Secure 
You can check if a website will securely transmit your personal information by verifying that the url has an “https” at the beginning. The “s” stands for “secure.” Also verify that there is a “locked” padlock before the URL. It is important to note, that while a site address starting with https encrypts your data during transmission, it does not guarantee how the site owner will use and/or manage your data. 

3. Be leery of links.
Fake emails that appear to be from a trusted retailer are very common during the holidays. Thieves will pose as real retailers to get you to click on malicious content that may steal your personal information or install harmful malware on your device. Verify that the links you’re clicking are legitimate. For more information, check out our recent blog post on pharming.

4. Take cover with credit.
If a thief steals your debit card you are more vulnerable to financial loss because they have direct access to your checking account, whereas, a credit card is not directly linked to a bank account. Additionally, credit cards provide protections that debit cards do not. Under federal law, your personal liability for fraudulent charges on a credit card cannot exceed $50. But if a fraudster uses your debit card, you could be liable for $500 or more, depending on how quickly you report it.

5. Watch for counterfeit coupons.
Thieves try to entice holiday buyers by creating and sending fake coupons. Verify that the coupons you are using are legitimate and have the retailer’s exact logo. Beware that social media links for alleged “coupons” could connect you to a phishing site or install malware on your device.

6. Protect your passwords.
It’s crucial that you never reuse a password across accounts. It’s also important that you create passwords that can not be easily guessed (stay away from creating passwords that use easily guessed personal details such as birthdays, graduation years, pet names, etc.). So how does one remember so many different passwords? Consider using a digital Password Manager (such as LastPass or 1Password) to help you generate long, random and unique passwords as well as assist you with storing them in a secure spot. 

7. Research 3rd party payment systems.
Unlike regular online transactions, payments made through Apple Pay or Google Pay don’t use your real credit card number, so vendors never get access to it. These services make use of a technology called payment tokenization, which converts your credit card number into a cryptogram that’s worthless to hackers. Ordinarily, hackers just need your credit card number, CVV, and expiration date to commit fraud, and those are a lot easier to come by.

8. Statements Matter.
Be aware of the purchases you make and keep track of them on your credit statements. During the rush of the holiday season, it can be easy to let one or two transactions slip by that you never made. If you see a transaction that you do not recognize, be sure to call your credit card company or bank right away.

9. Veil your identity with a VPN
Using a VPN when browsing online can help you mask your internet activity and secure your personal information. All of your information and activity is known to your Internet Service Provider (ISP) because of your IP address. By changing your IP address, you can mask your internet activity. A VPN lets you do this. 

What to do if you’re a victim of Identity Theft

Contact iLOCK360.  As an iLOCK360 paid subscriber, our certified U.S.-based Identity Theft Restoration Specialists will work on your behalf to restore your good name. A Specialist assigned to your individual case will guide you through each step of the restoration process and ensure that your case is handled with care. With your consent, the Restoration Specialist can help you with closing accounts, re-ordering cards, placing a fraud alert with each of the three credit bureaus, and removing fraudulent activity from your credit report. Restoration Specialists offer robust case knowledge in both credit and non-credit fraud situations. Our dependable identity restoration services will reduce the time and effort you’ll spend restoring your good name. 

Call 855-287-8888 to speak with an Identity Theft Restoration Specialist. 

How Else Can iLOCK360 Help?

Did you know that your iLOCK360 membership can help alert you if your personal information may have been bought or sold by hackers online?

iLOCK360’s proprietary CyberAlert can help you monitor your identity 24/7/365 for possible compromise on the Dark Web (i.e. the anonymous online marketplace where illicit activities occur). If your monitored information is found bought or sold online you will be automatically alerted so that action may be taken to address the issue.

CyberAlert’s available monitored features include: Bank Accounts, Credit/Debit Cards, Email Addresses, Phone Numbers, Medical ID Numbers, Social Security Number, Driver’s License and Passport.

Want to know if your information may have been compromised by a cybercriminal on the Dark Web? Be sure to log into your iLOCK360 account to setup this feature today.

7 Tips To Protect Yourself & Your Identity During The Holiday Shopping Season

By Uncategorized One Comment

The holiday season is the most joyful time of year – spent enjoying family, friends, and food. The last thing you should have to worry about is the threat of someone stealing your credit card information, or even worse, your entire identity. With today’s increased dependence on technology, and significant data breaches announced almost daily; cyber crimes like identity theft and credit card fraud have skyrocketed. Follow these 7 tips to make you and your identity less vulnerable this holiday shopping season.

1. ONLY Rely On Secure Wifi
It is a good rule of thumb to avoid unsecured networks at ALL TIMES, but it is imperative to avoid them when you enter personally identifiable information (PII) such as credit card numbers, shipping and billing addresses, etc. When you enter this valuable information through an unsecured network, you are more vulnerable to hackers penetrating the network and stealing your information. You can identify a secure network by the lock in the top left corner of your URL bar and the web address will begin with “https://” such as the image below.

2. Watch Out For Fakers
Hackers can create a webpage that is a visual replicate of the website they are imitating. However, they cannot completely replicate the domain name. Often times these fake websites will include domains with a hyphen in them or the words “shop” or “secure”. Examples of fake websites to be aware of are “amazonsecure-shop, targethome.today, and walmart-outlet.ga”. The image below points out different ways to spot a fake email from a company.

3. Recognize The Risk of Rushing
You could be well versed in the various online risk factors, but when you are in a rush you are more likely to make simple mistakes such as clicking on a malicious email link you normally would not, or providing your information without thinking through how it will be used. The extra 30 seconds it takes to slow down and think before you give access to your personal information could cost your months of trying to restore your identity.

4. Don’t Take The Bait
A common method of phishing is sending fake order confirmation or delivery failure emails to consumers. Don’t fall victim to these fake email alerts. With the increase in online shopping orders it is sometimes hard to keep track of what packages you ordered and when you received them. Hackers send these phishing emails to entice you to either share information about you or spread malware that will infect your computer when you click the link. Examples of email scams to look out for include order confirmation emails from Walmart and delivery failure emails from FedEx.

5. Be Mindful in Marketplaces
When using online marketplaces you must be careful to protect yourself not only financially, but also physically. There have been some Amazon.com resellers that have scammed people by delivering their packages to other addresses in their zip code, but not to the actual purchaser. For example, if you order a phone from an Amazon reseller to be delivered to your address in Austin, Texas, the reseller will send the phone to someone else in Austin, Texas and communicate to Amazon that it was delivered to you, preventing you from receiving a refund even though you never received the package. The best way to avoid this is to order directly from site vendors or meet up with the reseller rather than having them ship the product to you. If you do choose to personally meet a reseller, it is important to remember physical safety. Although, cyber crime is constantly growing, petty theft and violence is also still prevalent. If you have to meet with a reseller in person, try to find a public spot, with some type of surveillance. Some even suggest meeting at a police station, so that if something goes wrong, authorities can arrive immediately.

6. Credit Reigns Supreme
Think twice before choosing debit over credit in the checkout line. It is much easier to dispute things that were fraudulently purchased on a credit card versus a debit card. If your debit card falls into the wrong hands, the thief could easily drain your bank account and it could take months to get your funds back, if at all. Also, many credit card companies may offer rebates or “points”  and extended warranties to incentivize your holiday gift purchases.

7. Is It Too Good To Be True?
As disappointing as it may be, 99% of the time an offer you receive claiming to provide a free gift card is not real. Before you fall victim to a phishing or malware scam be sure to ask yourself, “Why would Amazon or Footlocker be sending me a free gift card?” Typically, if you can’t think of a legitimate reason, then you’re dealing with some type of scam. If it sounds too good to be true, it probably is.

Pro Tip: When you are suspicious about an email you receive or the company you received it from, call their customer service line. Everything is digitized in this day and age so if their agents don’t have a record of a communication with you, then 9 times out of 10 the communication may be fraudulent.