How do email scams work

If you reply that you didn't, the scammer will ask you to confirm your credit card or bank details so the 'bank' can investigate.

In some cases the scammer may already have your credit card number and ask you to confirm your identity by quoting the 3 or 4 digit security code printed on the card. Phishing messages are designed to look genuine, and often copy the format used by the organisation the scammer is pretending to represent, including their branding and logo.

They will take you to a fake website that looks like the real deal, but has a slightly different address. For example, if the legitimate site is ' www. If you provide the scammer with your details online or over the phone, they will use them to carry out fraudulent activities, such as using your credit cards and stealing your money. If you think you have provided your account details to a scammer, contact your bank or financial institution immediately.

We encourage you to report scams to the ACCC via the report a scam page. This helps us to warn people about current scams, monitor trends and disrupt scams where possible. Previously undetected forms of spyware can often do the most damage, so it's critical to have up-to-the-minute, guaranteed protection. Best Practices for Protecting Your Information.

Phishing has evolved. Learn 11 ways hackers are angling for your data and how to protect yourself in this guide. I Responded to a Phishing Email. Now What? How will I know if I've been phished? It can be hard to tell the difference, but you may be dealing with a phishing scam if you see the following: Requests for confidential information via email or instant message Emotional language using scare tactics or urgent requests to respond Misspelled URLs, spelling mistakes or the use of sub-domains Links within the body of a message Lack of a personal greeting or customized information within a message.

Legitimate emails from banks and credit card companies will often include partial account numbers, username or password. Legit companies know how to spell Possibly the easiest way to recognize a scammy email is bad grammar. An email from a legitimate organization should be well written.

They prey on the uneducated believing them to be less observant and thus, easier targets. Need Security Consulting? Request a Quote. Unsolicited emails that contain attachments reek of hackers.

Sometimes companies that already have your email will send you information, such as a white paper, that may require a download. In that case, be on the lookout for high-risk attachment file types include. When in doubt, contact the company directly using contact information obtained from their actual website. Just remember, curiosity killed the cat. Double check URLs.

Ensure additional security by hovering your mouse over embedded links without clicking! Although very convincing, the real Nokia wouldn't be sending you a "Save your stuff" email from info news. Make sure both you and your employees understand these specific email phishing examples and all of the telltale signs of a phishing attempt.