Defense Against Crime

13/07/2010

How to Ruin a Phishing Trip

Filed under: Cyber Crimes — peppereyes @ 4:06 PM
Tags: , ,

If you are like me everyone once in awhile you get one of those E-mail stating that

Your Citi Bank Account has been suspended” or something similar to this.

You would click on the link to see what the problem is except you know two things.

  1. Citibank would not send you and e-mail saying your account is suspended.
  2. You don’t have a CitiBank account anyway.

This is obviously a phishing ploy. Phishing is the criminally fraudulent process of attempting to acquire personal sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Phishers target the customers of banks and online payment services. E-mails, supposedly from the Internal Revenue Service, have been used to glean sensitive data from U.S. taxpayers. Social networking sites are now a prime target of phishing, since the personal details in such sites can be used in identity theft. The damage caused by phishing ranges from denial of access to e-mail to substantial financial loss. It is estimated that between May 2004 and May 2005, approximately 1.2 million computer users in the United States suffered losses caused by phishing, totaling approximately $929 million dollars. United States businesses lose an estimated $2 billion dollars per year as their clients become victims.

The criminals are fishing for information…your information, so why not have some fun.

Many of the newer web browsers such as Internet Explorer as have filters in them that that prevent you from access those sites. However, if you don’t have one of those browsers and what to have some fun..here is something you can do.

Option 1: Just Delete the E-mail and Mark it as Spam

Option 2 : Creating your PHISH and still mark it as SPAM

Provide them with bogus (fake) information. After all they send you fake e-mail, why not return the favor.

  1. Now think of your favorite TV character for a Old TV Show or even a current one. Many of these phishing e-mails are from foreign companies who are not really up on American Pop-Culture.
  2. Create a Bio for that character using elements from the show
    1. Let’s say Ward Cleaver, Jed Clampett, Bobby Ewing,  or Marie Barone etc.
  3. You can do an internet search to for some show info and trivia. The Scammers are going to want Address Phone number…etc.
    1. One of the the addresses for the Cleavers is 485 Mapleton Drive in Mayfield. You can make up a state and a zip. If you go to Goolge and type in a most cities, you can probably find a state with that city or something close.
    2. Since they want a phone number look up city hall or the police department in the nearest city to that zip.
  4. They are going to want your password. I like using Ex0dus2015 (Exodus 20:15 is Thou shall not steal)
  5. Most of the sites don’t do any verification for credit card numbers, so you can make one up if you know the basic rules. If you want to be really good you can look up some of the rules (http://www.beachnet.com/~hstiles/cardtype.html)
  6. They are going to want a Social Security Number, again you can either make one up or use some of the ones floating out there on the internet. I know a person who uses 457-55-5462. Which is the SSN for Todd David of LifeLock.
  7. They are going to want Account Numbers and PINs. Again most sites don’t have any verification codes. You can type in your old girl friend/ boy friend’s phone number as the account number and their BDay as the Pin.
  8. Some sites ask for things like Mother’s maiden name, favorite book, all those things you might have used on sites to create your virtual ID. Don’t use anything you would use. You can use Non-Sense words instead. (it Jabberwork, Tribble, Tatoonie, Expelliarmus… etc)
  9. Make up anything and everything else you may be asked
  10. Then submit it.

Congratulations you have just put a boot on the phishers hook

In general there are a few things you can do not to become a victim.

  1. Never respond to requests for personal information via e-mail. (Name, SSN, etc)
  2. Visit Web sites by typing the URL into your address bar. (never click on embedded links)
  3. Check to make sure the Web site is using encryption. (it should be https:\\\www..com)
  4. Routinely review your credit card and bank statements and credit report (annualfreecreditreport.com)
  5. Report suspected abuses to the proper authorities..

PepperEyes.com is dedicated to meeting the safety needs of you, your friends, your family members or your business, by assisting anyone who is unwilling to become a victim of crime.  If you want to take personal responsibility arm yourself, or your business with our products and the knowledge of the best way to stay safe in an ever-increasing violent world. In today’s society being equipped mentally and physically is no longer an option. -Victor Swindell

Advertisements

Create a free website or blog at WordPress.com.

%d bloggers like this: