How To Detect and Avoid A Phishing Expedition
You may receive emails which appear to be from reputable financial institutions such as Banknorth, Washington Mutual, Citibank, Amazon, Paypal, Ebay, etc. Some of these emails contain what appear to be links to the websites of these institutions. This type of email scam is known as phishing, because computer spammers use fraudulent email messages to "fish" for information in an attempt to entice recipients into divulging personal data such as credit card or bank account numbers, Social Security numbers, and passwords. Once this information is in the hands of a "phisher", it can be exploited for financial gain or other malicious purposes.
Please follow these suggestions to avoid being exploited by these scam artists:
- Never respond directly to email requesting personal information.
- Do not click links that appear to point you to the institutional website. These links often point you to another, malicious website that "masquerades" as the site you think you are going to.
- If you doubt a message's authenticity, verify it by contacting the institution directly (by phone, going to their verified website, etc).
- Be cautious about opening any attachment or downloading any files from emails you receive.
- Avoid filling out forms in email messages asking for personal financial information.
- Verify suspicious sites by typing the URL directly into your browser's address bar yourself.
- When prompted for a password, give an incorrect one first. A phishing site will accept it; a legitimate one won't.
- Determine if a Web site is secure by looking at the bottom of your browser's window for an icon of an unbroken key or a lock that's closed, golden, or glowing. Double-clicking on the lock displays the site's certificate, which you can check to verify it matches the company you think you're connected to.
- Ensure your browser is up-to-date and security patches are applied regularly. Use up-to-date anti-virus software. Review your credit card and bank statements at least monthly.
Importing the Cyrillic SPAM Filtering Rule
The Cyrillic SPAM Filtering rule will help you keep your Inbox less cluttered, by moving e-mail written in Cyrillic from the Inbox to a folder of your choice. This could be used to filter SPAM messages written in Cyrillic by moving them to the “Junk E-Mail” folder. Note that the rule will filter ALL messages that contain at least one Cyrillic character in the body or the subject, regardless of whether they are legitimate or SPAM. Follow the steps below to import this rule.
- Launch Outlook.
- From the Tools menu select Rules and Alerts. The Rules and Alerts dialog box opens.
- Click Options. The Options dialog box opens.
- Click Import Rules. The Import Rules From... dialog box opens.
- In the Look In... drop-down list, navigate to \\Snowleopard\Vol1\Software\Software-Windows\Quick-Fixes.
- Select the file called cyrillic.rwz and then click . You are returned to the Options dialog box.
- Click . You should now see the new rule in your list of rules. It will look like the one below:
- Click .
- The following pop-up will display, asking whether you want to save your rule changes:
- You must specify the destination for the filtered messages. You may choose the destination that suits you most. We suggest you use the Junk Mail folder, just in case something you DO want comes in and gets filtered. Re-open the Rules and Alerts dialog box (from the Tools menu).
- Select the Cyrillic SPAM rule.
- In the Rule Description section, click on the word specified. The Rules and Alerts – Choose a Folder dialog box opens.
- Select the desired folder and then click .
- In the Rules and Alerts dialog box, turn on the rule by checking the box next to its name:
- Click to close the Rules and Alerts dialog. You have successfully set up the Cyrillic SPAM filter.