I Think I’ve Been “Phished”, What Should I Do?

//
I think I may have been “phished” with the “request to confirm” scam email. How can I tell? And if I have been “phished” what do I do now?

First, don’t feel too bad — phishing attempts are getting very, very sophisticated. I haven’t fallen for one yet, but I’ve come darned close a time or two.

But be prepared for a painful recovery if the phishing was successful.

How to tell if you’ve been phished depends on where in the process you are: looking at an email, after clicking a link in the email or other source, or some time thereafter.

What to do after that depends on what information you gave in response to the phishing attempt.

Read moreI Think I’ve Been “Phished”, What Should I Do?

What is it about attachments?

This week, a report about the most common vectors for data breaches and related issues was released.

You and I are the weakest link.

For at least one large segment of malware attack, it’s our propensity to download and open email attachments that gets us into trouble.

A couple of scary numbers from that report: 1 in 10 people will download and open an attachment attached to phishing email or spam. The average time between a phishing email being sent and the first victim taking the bait is 22 seconds.

What the heck is it about email attachments that makes them so darned irresistible?

Read moreWhat is it about attachments?

Phishing: How to Know it When You See It

//
I’ve received an email from Microsoft asking for billing details and threatening the end of my Outlook.com account. Contacting Microsoft resulted in referral to a support alias, but no answer. Is this a problem, or a forgery?

Phishing is a word you hear a lot in the news these days, and this question brought it to mind.

You’re right to be suspicious: this definitely sounds like a phishing expedition.

Read morePhishing: How to Know it When You See It