All You Need To Know About Phishing Scam

Wednesday, Jun 21 08:09 AM

What is phishing?

Phishing Pronounced like fishing, phishing is a term used to describe a malicious individual or group of individuals
who scam users. They do so by sending e-mails or creating web pages that are designed to collect an individuals
online bank, credit card, or other login information. Because these e-mails and web pages look like legitimate companies users trust them and enter their personal information.

Example of phishing e-mail

Dear Ticketgateway customer,

Your Account has been Suspended. We will ask for your password only once.
We will charge your account once per year. However, you will receive a confirmation request in
about 24 hours after the make complete unsuspend process. You have 24 hours from the time
you'll receive the e-mail to complete this ticketgateway request.

Note: Ignoring this message can cause ticketgateway TKO delete your account forever.

To make unsuspend process please use this link:
http://fakeaddress.com/ticketgateway

ticketgateway will request personal data(password;and so on) in this email.

Thank you for using ticketgateway!

https://www.ticketgateway.com/

This ticketgateway notice was sent to you based on your ticketgateway account preferences. If you would like to review your notification preferences for other communications, click here. If you would like to receive this email in text only, click here.

How to identify a phishing e-mail.

Company - These e-mails are sent out to thousands of different e-mail addresses and often the person sending
these e-mails has no idea who you are. If you have no affiliation with the company the e-mail address is supposedly
coming from, it is fake. For example, if the e-mail is coming from Wells Fargo bank but you bank at a different bank.
Spelling and grammar - Improper spelling and grammar are almost always a dead giveaway. Look for obvious errors.

No mention of account information - If the company were sending you information regarding errors to your account, they would mention your account or username in the e-mail. In the above example, the e-mail just says
"Ticketgateway customer", if this was Ticketgateway they would mention your username.

Deadlines - E-mail requests an immediate response or a specific deadline. For example, in the above example,
the requirement to log in and change your account information within 24 hours.

Links - Although many phishing e-mails are getting better at hiding the true URL you are visiting, often these e-mails will list a URL that is not related to the company's URL. For example, in our above Ticketgateway example,
"http://fakeaddress.com/ticketgateway" is not an Ticketgateway URL, just a URL with an " Ticketgateway " directory.
Also if you receive any emails from ticketservice@ticketsgateway.com is not a Ticketgateway email, real email is
ticketservice@ticketgateway.com

What to do if you are not sure if an e-mail is official.

Never follow any links in an e-mail. Instead of following the link in the e-mail, visit the page by manually typing the address of the company. For example, in the above example, instead of visiting the fake Ticketgateway URL, you would type: www.ticketgateway.com in your web browser and log in to the official website.

Never send any personal information through e-mail. If a company is requesting personal information about your account or is saying your account is invalid, visit the web page and log into the account as you normally would.

Finally, if you are still concerned about your account or are concerned about your personal information, contact the
company directly, either through their e-mail address or over the phone.

Issues phishing e-mails commonly address

Below are some of the issues a phishing e-mail may inquire about to trick users.

Account issues, such as account or password expiring, account being hacked, account out-of-date, or account
information needing to be changed.

Credit card or other personal information, such as credit card expiring or being stolen, incorrect social security
number or other personal information, or duplicate credit card or other personal information.

Confirming orders, such as a request that you log in to confirm recent orders or transactions.

Common companies affected by phishing

Below is a listing of companies phishers most often try to attack.

Any major bank
Popular websites such as Amazon, Facebook, MySpace, PayPal, Ebay, Microsoft, Apple, Hotmail, YouTube, etc.
Government: FBI, CIA, IRS, etc.
Internet service providers such as AOL, Comcast, Cox, MSN, etc.
Casinos and lottery.
Online dating or community websites.

How to prevent my account from Phishing Scam?

If you receive a suspicious email

Do not reply to any spurious email,contact us directly if you like to verify the information included in the email. We do not ask for personal or financial information over email. You can email us at phishing@ticketgateway.com if you have any questions.

Do not click any links provided in these emails (or cut and paste them into a browser). This may download viruses to your computer. Do not confirm your email address to phishing emails.

Do not open any attachments.If you receive an attachment you are not expecting, delete attachment. If you do not
recognize the "from" email address. Please report the suspicious email to phishing@ticketgateway.com

Do not enter your personal information or passwords on an untrusted emails or forms.

Report any suspicious messages that claim to be from ticketgateway.com or contain a suspicious attachment or link
to phishing@ticketgateway.com

Delete the message.

Only trust email's which are coming from ticketservice@ticketgateway.com

Example of false TicketGateway's E-mails. Click here

 

If you responded to a suspicious email

Contact your financial institution.Report the content of your email and your actions to the security or fraud
department.

It is critical that you:

Change the passwords to all online accounts that may have been compromised.

On TicketGateway, you can log into your account and click on “My account” you can then change your email address or password.

Report the message to the Federal Trade Commission at spam@uce.gov or through their online form and to any organization impersonated in the email. You can also report the message to the Anti-Phishing Working Group at reportphishing@antiphishing.org, a group of Internet Service Providers, security vendors, financial institutions, and law enforcement agencies dedicated to fighting phishing.

we value your feedback Tell us how we're doing

It was great

0

It was ok

0

It wasn't good

3

add comments

sign up & start selling tickets today

Stay connected