Khiyaanada Khiyaanada^(Scams) ah waa kuwa ku khiyaaneeya inaad bixiso macluumaadka shakhsiyeed adoo isticmaalaya emails, iwm. Waxaan horay u aragnay waxa uu yahay Phishing^{(what is Phishing)} . Maqaalkan, waxaan ku siin doonaa qaar ka mid ah talooyin ku saabsan sida looga fogaado weerarrada phishing iyo khiyaamooyinka.

Ka fogow weerarrada phishingka

Talooyinkan si looga fogaado khiyaanada phishingka waxay ku salaysan yihiin talooyinka APWG ( Kooxda Ka-hortagga Phishing Working Group^{(Anti-Phishing Working Group)} ), oo ah urur isku dayaya inuu mideeyo jawaabta caalamiga ah ee dambiyada internetka^(Cybercrime) . Ururku wuxuu bixiyaa gole jawaab-bixiyeyaasha iyo maareeyayaasha dambiyada internetka si ay:

• Ka wadahadl^(Discuss) arrimaha phishing iyo cybercrime
• Tixgeli xalalka tignoolajiyada ee suurtogalka ah
• Soo gal^(Access) xogta saadka ee codsiyada amniga internetka iyo baadhista dambiyada internetka
• Si loo kobciyo cilmi-baarista jaamacadda ee u heellan dambiyada internetka iyo
• In lagala taliyo dawladda, warshadaha, sharci fulinta iyo ururada heshiisyada nooca dambiyada internetka

Kuwa soo socda ayaa ah qaar ka mid ah talooyinka muhiimka ah ee APWG ee ku saabsan sida looga fogaado khiyaanada phishingka.

Ha aaminin iimaylada ku weydiinaya^{(Trust Emails Asking)} faahfaahinta shakhsi ahaaneed^{(Personal Details)}

Haddii ay dhacdo inaad u baahato inaad wax saxdo, way fiican tahay inaad ku qorto URL^(URL) -ka machadyada gacanta adigoo gujinaya xiriirinta iimaylka (sababta lagu sharaxay qaybta xigta). Gacanta u gal^(Log) oo isbedel ku samee - kaliya ka dib markaad la xaqiijiso machadyada sida muuqata kuu soo diray iimaylka.

Ogsoonow in bangi uusan waligiis kuu soo diri doonin iimayl ku weydiinaya faahfaahinta si aad u caddeyso marka aad la macaamilayso iimayladan.

Ha gujin Link^{(Click Links)} - yada ku jira iimaylada Weydiinta^{(Emails Asking)} Faahfaahinta Shakhsi ahaaneed^{(Personal Details)}

Waxay u ekaan kartaa iimaylka mid ka mid ah hay'adaha maaliyadeed ee aad ku kalsoon tahay. Weli, waligaa ha gujin xiriirinta iimaylka - xitaa si aad u aragto meesha xiriirku hogaaminaayo. Had iyo jeer waa inaad taxaddar muujisaa ka hor intaadan gujin xiriir kasta^{(precautions before you click on any link)} . Haddi aad rabto inaad ogaato meesha xidhiidhku u socdo, dul heehaab tilmaanta mouse-ka qoraalka barroosinka. Waxaad ka arki kartaa xiriirka hoose ee macmiilka emailkaaga. Haddii aadan arki karin xiriirka halkaas, koobi oo ku dheji Notepad^(Notepad) .

Maxaa dhacaya haddii uu yahay degel xaasidnimo ah, waxaa laga yaabaa inuu soo dejiyo xoogaa kood xaasidnimo leh isla marka aad soo degto mareegaha. Xitaa haddii fayraskaagu ogaado oo meesha ka saaro, koodka ayaa laga yaabaa inuu horeba waxyeello u geysto - isagoo ku celcelinaya ama soo diraya sawirka darawalkaaga adag.

Xaaladaha qaarkood, waxay abuuraan shabakado u eg sida mareegaha ururkaaga maaliyadeed. Laakiin waxaad ogaan kartaa farqiga marka aad eegto URL- ka . Tusaale ahaan, isku xirka PayPal waxay noqon doonaan sida http://paypal.com/something halka isku xirka phishing uu noqon doono http://something.com/PayPal . Xaaladda shaki, waxaad isticmaali kartaa adeegyada bilaashka ah ee mid ka mid ah URL Scanners si aad u hubiso dhabnimada degel kasta.

Xiriirinta Daryeelka Macmiilka^{(Customer Care Links)} ee Boostada ^(Details)Weydiinta^{(Mails Asking)} Faahfaahinta

Qaar ka mid ah iimaylada waxaa ku jiri kara xiriirinta daryeelka macaamiisha ee shabakada ururkaaga maaliyadeed. Sidoo kale, waxaa laga yaabaa inay ku jiraan xiriirinta siyaasadaha Qarsoonnimada^(Privacy) ama wax la mid ah. Dhammaan kuwan waa walxo doonaya inay ku khiyaaneeyaan inaad bixiso xogtaada. Ha ku dhicin xiriiriyeyaashaas. Mar labaad^(Again) , bangi kuguma weydiin doono tafaasiisha iimayl ahaan.

Inta aan halkan joogno, waxaan ku talinayaa inaadan bixin macluumaadka shakhsiyeed xitaa haddii qof kuu yeero. Iyadoo xatooyada aqoonsiga ay sii kordhayaan, dadku waxay isticmaalayaan injineernimada bulshada si ay uga kalluumaystaan ​​xogta aad adigu leedahay ama qof kuu dhow oo qaali ah. Marka ay timaado isdhaafsiga macluumaadka, u samee shaqsi ahaan adigoo booqanaya hay'adda maaliyadeed ee ay khuseyso.

Hubi^{(Make Sure)} in Iibiyuhu^(Vendor) Isticmaalo Website Sugan^{(Secure Website)}

^(Online)Wax iibsiga online waa shayga weyn ee soo socda. Waxay kuu ogolaanaysaa inaad dukaameysato adoon ka bixin gurigaaga. Si aad isaga ilaaliso khayaanada khiyaaliga ah ee ka imanaysa wax iibsiga onlaynka ah, hubi in website-ka ku weydiinaya macluumaadka credit/kaarka deynta uu yahay mid sugan. Ilaa wakhti danbe, waxaad ogeyd in shabakadu amaan tahay markaad aragto summada qufulka ee ciwaanka Maalmahan, waxay sidoo kale tuman karaan astaanta qufulka. Si aad u hubiso inaad ku sugan tahay goob nabdoon, laba jeer dhag sii sumadda qufulka si aad u aragto shahaadada amniga ee shabakada. Caado ka dhig inaad gacanta ku geliso URL .

Si aad u sii sugto biraawsarkaaga, waxaad isticmaali kartaa aaladaha aaladaha nidaam kasta oo amniga ah. Haddii aad isticmaalayso Internet Explorer , shid shaandhada SmartScreen^{(turn on the SmartScreen filter)} si aad u ogaato haddii degelku yahay goob phishing ah.

Isticmaal daalacashada ugu dambeysay

Haddii aad isticmaalayso browser duug ah, fursadaha waa in daciifnimada daalacashadan mar hore laga faa'iidaystay. Haddii aad aado browserka ugu dambeeyay, shirkadaha software-ku waxay isku dayaan inay sii wanaajiyaan dhinaca amniga. Waxa aad helaysaa balastarkii ugu dambeeyay marka iyo marka la helo baylahda. Mar labaad^(Again) , ku rakib aaladda amniga si ay u hubiso mareegaha aad booqanayso ee leh goobaha phishing-ka ee la yaqaan si ay kaaga digto khiyaamo suurtagal ah.

APWG waxay ku talinaysaa inaad isticmaasho noocii ugu dambeeyay ee Internet Explorer ama browser kasta oo kale oo aad isticmaasho.

Ka fiirso Bayaanada Bangiga

Ugu dambeyntii, laakiin ma aha ugu yar, sii wad hubinta xisaabaadkaaga bangiga iyo bayaannada debit / credit si aad u hubiso inaysan jirin wax isdabamarin ah. Tani waxay kaa caawinaysaa inaad ogaato khaladaadka kuwaas oo mararka qaarkood noqon kara kiis phishing ah oo markaa, xatooyo aqoonsiga.

Tani waxay sharraxaysaa sida looga fogaado khayaanada phishingka. Haddii aad hesho iimaylka phishingka, waxa kale oo aad ka warbixin kartaa, adiga oo u soo diraya iimaylka [email protected]

Isagoo ka hadlaya khayaanada, eeg qaar ka mid ah xiriiriyeyaashan:^{(Speaking of scams, have a look at some of these links:)}

1. Iska ilaali khayaanada internetka oo ogow goorta la aamini karo mareegaha^{(Avoid online scams and know when to trust a website)}
2. Iska ilaali khayaanada sida been abuurka ah u isticmaala magaca Microsoft^{(Avoid scams that fraudulently use the Microsoft name)}
3. Iska ilaali Vishing and Smishing
4. Ka digtoonow khayaanada nibiriga^{(Whaling scams)}
5. Iska ilaali Khiyaamada wax iibsiga ee Intarneedka & Fasaxa Xiliga Fasaxa^{(Avoid Online Shopping Fraud & Holiday Season Scams)}
6. Ka fogow Intarneetka Kalluumeysiga Khayaanada Injineernimada Bulshada.^{(Avoid Internet Catfishing Social Engineering Scams.)}

How To Avoid Phishing Scams and Attacks?

Phishing Scams are those which fool you into giving оut personal information by using emails, etc. We have already seen what is Phishing. In this article, I will give some tips on how to avoid Phishing attacks and scams.

Avoid Phishing Attacks

These tips to avoid phishing scams are based on the recommendations of APWG (Anti-Phishing Working Group), an organization that is trying to unify global response to Cybercrime. The organization provides a forum for responders and managers of cybercrime to:

• Discuss phishing and cybercrime issues
• Consider potential technology solutions
• Access data logistics resources for cyber-security applications and cybercrime forensics
• To cultivate the university research community dedicated to cybercrime and
• To advise government, industry, law enforcement and treaty organizations on the nature of cybercrime

The following are some of the important recommendations of APWG on how to avoid phishing scams.

Do Not Trust Emails Asking For Personal Details

In case you need to correct anything, it is better to type the URL of the institution manually than clicking links in an email (reason explained in the next section). Log in manually and make changes – only after confirming with the institution that apparently sent you the email.

Note that no bank will ever send you an email asking for details so steer clear when dealing with such emails.

Don’t Click Links In Emails Asking For Personal Details

It might look like an email from one of the financial organizations you trust. Still, never click the links in the email – not even to see where the link is leading. You should always take some precautions before you click on any link. If you wish to know where the link is leading, hover your mouse pointer over the anchor text. You can see the link at the bottom of your email client. If you can’t see the link there, copy and paste it into Notepad.

What happens is that if it is a malicious website, it may download a bit containing malicious code the moment you land on the website. Even if your antivirus detects it and removes it, the code might do the damage already – by replicating or by sending out an image of your hard drive.

In some cases, they create websites that look exactly like your financial organization’s website. But you can notice the difference when you look at the URL. For example, PayPal links would be like http://paypal.com/something while the phishing link would be http://something.com/PayPal. In the case of doubt, you can use the free services of any one of these URL Scanners to check the genuinity of any website.

Customer Care Links In Mails Asking For Details

Some emails may include customer care links to your financial organization’s website. Similarly, they might include links to Privacy policies or something similar. All these are elements that intend to trick you into giving out your data. Do not fall for those links. Again, no bank will ever ask you for details via email.

While we are here, I recommend you should not give away personal information even if you are called by someone. With identity thefts on rising, people are using social engineering to fish out data belonging to you or someone near and dear to you. When it comes to the exchange of information, do it in person by visiting the relevant financial institution.

Make Sure That Vendor Uses Secure Website

Online shopping is the next big thing. It allows you to go shopping without having to leave your home. To avoid phishing scams that come in the grab of online shopping, make sure the website asking you for credit/debit card info is secure. Until some time back, you knew the website is secure when you see a lock icon in the address bar. These days, they can spoof the lock icon as well. To make sure you are on a safe site, double click the lock icon to see the certificate of security for the website. Make it a habit to manually enter the URL.

To further secure your browser, you can use toolbars from any security system. If you are using Internet Explorer, turn on the SmartScreen filter so that you know if a website is a phishing site.

Use Latest Browsers

If you are using an older browser, the chances are that the weaknesses of these browsers have already being exploited. If you go for the latest browser, the software companies try to keep on improving on the security aspect. You receive the latest patches as and when vulnerabilities are found. Again, install a security toolbar so that it can check the websites you are visiting with the known phishing sites to alert you about possible scams.

APWG recommends using the latest version of Internet Explorer or any other browser that you use.

Keep A Watch On Bank Statements

Last but not the least, keep on checking your bank account statements and debit/credit statements to make sure there are no irregularities. This helps you spot errors which may sometimes be a case of phishing and thereby, identity theft.

This explains how to avoid phishing scams. If you receive a phishing email, you may also report it, by forwarding the email to [email protected]

Speaking of scams, have a look at some of these links:

1. Avoid online scams and know when to trust a website
2. Avoid scams that fraudulently use the Microsoft name
3. Avoid Vishing and Smishing Scams
4. Be aware of Whaling scams
5. Avoid Online Shopping Fraud & Holiday Season Scams
6. Avoid Internet Catfishing Social Engineering Scams.

Related posts

• Weerarada Cyber ​​- Qeexid, Noocyada, Ka Hortagga

• Weerarada Nuglaanta Afduubka DLL, Kahortagga & Ogaanshaha

• Weerarada Malware-ka aan fileyn, Ilaalinta iyo Ogaanshaha

• Iska ilaali Khiyaamada wax iibsiga ee Intarneedka & Fasaxa Xiliga Fasaxa

• Fayraska COVID-19 phishing, khayaanada, khiyaanada iyo qorshayaasha

• Barnaamijyada ama Codsiyada aan la rabin ee suurtogalka ah; Iska ilaali inaad ku rakibto PUP/PUA

• Sida loo isticmaalo Malwarebytes Anti-Malware si meesha looga saaro Malware

• Waa maxay dambiyada internetka? Sidee wax looga qabtaa?

• Cryptojacking khatarta macdanta birawsarka cusub ee aad u baahan tahay inaad wax ka ogaato

• Sida looga hortago Malware - Talooyin si loo sugo Windows 11/10

• Sida loo isticmaalo Avast Boot Scan si looga saaro Malware-ka Windows PC

• Waa maxay Win32:BogEnt iyo sida loo saaro?

• IObit Malware Fighter Dib u eegis iyo soo dejin bilaash ah

• Hubi haddii kombuyuutarkaaga uu ku dhacay ASUS Update Malware

• Sida loo hubiyo in faylku xaasid yahay iyo in kale Windows 11/10

• Soo-gudbinta Malware: Halkee loo gudbiyaa faylasha malware-ka Microsoft iyo kuwa kale?

• Ka ilaali Drive-by soo dejinta iyo weerarrada malware-ka ee la xidhiidha

• Waa maxay CandyOpen? Sidee looga saaraa CandyOpen Windows 10?

• Sida loo hubiyo Registry for malware gudaha Windows 11/10

• Rogue Security Software ama Scareware: Sida loo hubiyo, looga hortago, looga saaro?