Fishing for Phish
It was my freshman year in college. I had just gotten a credit card and my very own bank account. Oh, boy! The world of things I can now do; shop online, make an eBay account, subscribe to video games. The world was my oyster. It was all good and fun. I was riding high then I got an email. "Your ebay.com membership needs updating. Please click here to continue and enter your information."
So I clicked the link and it took me to what I thought was the eBay.com login screen. I entered my user name and password. (Just lost that.) Then it came to updating my credit information. (Bam! Just lost that.) and then I clicked saved. I closed out the window and I forgot to add something so I went to eBay.com without using the link in the email. I noticed none of my information had changed nor had it needed updated. I hovered over the link in my email. It was a ton of numbers and then eBay.com like this 201.801.212.ebay.com. They got me! Up to that point I never thought it was that easy. I was always very cautious. I traced the IP and saw it went to Korea so I called up my bank, changed my numbers, and my ebay information. They made the site look and function exactly as eBay does. It even had a link to its privacy policy. I was phished! The image above shows a similar scam.
If this happened to me that easily, I thought to my parents and people not from my generation. They don't stand a chance! All thy have to go by is what the directions say and if someone is giving them false directions, they are toast. I think that making a standardized system of purchasing information is a great idea. That way you know exactly where your information is and you don't have the added risk of it being all over the web. What is safer? Having one key to your house or having 400?
0 TrackBacks
Listed below are links to blogs that reference this entry: Fishing for Phish.
TrackBack URL for this entry: https://blogs.psu.edu/mt4/mt-tb.cgi/7251
Leave a comment