What is 'Phishing'

Phishing is a method of identity theft carried out through the creation of a fraudulent website, email or text appearing to represent a legitimate firm. A scammer may use a fraudulent website that appears on the surface to look the same as the legitimate website. Visitors to the site, thinking they are interacting with a real business, may submit their personal information, such as social security numbers, account numbers, login IDs and passwords, to this site. The scammers then use the information submitted to steal the visitors money, identity or both, or sell the information to other criminal parties.

Phishing may also occur in the form of emails or texts from scammers that are made to appear as if they are sent from a legitimate business. These fake emails or texts may install programs like ransomware that can allow scammers to access a victim's computer or network.

BREAKING DOWN 'Phishing'

Phishing scammers create a false sense of security for their targets by spoofing or replicating the familiar, trusted logos of well-known, legitimate companies, or they pretend to be a friend or family member of their victims. Often, the scammers attempt to persuade victims they need personal information urgently, or the victim will experience a severe consequence, such as frozen accounts or personal injury.

A classic example of phishing is an identity thief setting up a website that looks like it belongs to a major bank. Then, that thief sends out many emails that claim to be from the major bank and request the email recipients to input their personal banking information (such as their PIN) into the website so the bank may update their records. Once the scammer gets a hold of the needed personal information, they attempt to access the victim's bank account.

Protecting Yourself from Phishing Attacks

The following highlights signs of phishing, and how to protect yourself.

  1. Exceptionally good deals or offers. If an email touts offers that are too good to be true, they probably are. For example, an email claiming you've won the lottery or some other lavish prize may be luring you in to get you to click a link or relay sensitive personal information.
  2. Unknown or unusual senders. Though phishing emails may look like they originate from someone you know, if anything seems out of the ordinary, be cautious. When in doubt, hover over the email address of the sender to ensure the email address matches the email address you expect. Place a phone call to the company if you are unsure of an email or website. Don't respond to emails with any personal information.
  3. Hyperlinks and attachments. These are particularly concerning if received from an unknown sender. Never open links or attachments unless you are confident they are from a safe sender. Type in the link address rather than clicking the link.
  4. Incorrect spelling in the web address. Phishing sites often use web addresses that look similar to the correct site, but contain a simple misspelling, like replacing a "1" for an "l".
  5. Immediate pop-ups. Be wary of websites that immediately display pop-up windows, especially those asking for your username and password. Use two-factor authentication, a browser with anti-phishing detection and keep security on your systems up-to-date.
RELATED TERMS
  1. Email Money Transfer (EMT)

    An email money transfer (EMT) is a retail banking service that ...
  2. Identity Theft

    Identity theft is the crime of obtaining the personal or financial ...
  3. Reloaded

    Reloaded is a slang term meaning that a consumer who was previously ...
  4. Medical Identity Theft

    Medical identity theft involves the use of another person's health ...
  5. Cowboy Marketing

    A slang term to describe a situation in which a company is unaware ...
  6. Adminispam

    Adminispam is a slang term describing electronic messages from ...
Related Articles
  1. Investing

    5 New Phishing Scams To Watch Out For

    These five scams may seem transparent, but thousands of people fall for them annually.
  2. Taxes

    Know the Latest IRS Scams

    How do IRS scammers go about stealing your personal information? Their methods include hacking, malicious software and psychological manipulation.
  3. Tech

    Advisors: Avoid Phishing Scams and Cybercrimes

    Taking these steps will help to avoid falling victim to some big cybersecurity threats.
  4. Insights

    10 Tips To Avoid Common Financial Scams

    Remember that "don't talk to strangers" rule from childhood? Well, don't wire them money either. Or fall for these other tricks.
  5. Insights

    Watch Out For These Top Internet Scams

    The Internet had make it easier than ever for scammers to trick people into giving away their money and personal information. These are the scams to avoid.
  6. Tech

    11 Ways to Help Prevent Identity Theft

    Identity theft is no joke. Here are 11 ways to help prevent falling victim to it.
  7. Tech

    Protecting Private Information From Hackers

    Two examples of how security measures protected clients' money from email hackers.
  8. Personal Finance

    Credit Scams To Watch Out For

    More than 30 million people were victims of fraud in 2007. Will you be next?
  9. Financial Advisor

    Top 10 Email Marketing Tips for Financial Advisors

    These 10 strategies can help advisors make the most of email marketing.
RELATED FAQS
  1. What are the dangers of using the Electronic Federal Tax Payment System (EFTPS)?

    The Electronic Federal Tax Payment System (EFTPS) is a convenient way to file your taxes, but you need to be aware of some ... Read Answer >>
  2. Why would someone change their Social Security number?

    Learn the reasons a person might choose to change his Social Security number, including identity theft and abuse, and discover ... Read Answer >>
Trading Center