Beware of social engineering

Everyone likes to be friendly and helpful. However, these tendencies can get you in trouble if you become too trusting. Social engineering — when thieves use your good intentions to manipulate you — is a common method in fraudulent schemes. It is likely you have witnessed some of these for yourself.

• Baiting attacks — Thieves entice you to click a link or download a file by offering of an unbelievable price on an item or giving you a flash drive containing sensitive data. When you click the link or open the drive, malware infects your computer.
• Scareware or “response for help” attacks — An image appears on your screen stating that your computer is infected with a virus or claiming to be a response to a recent request for computer help that you never really made. Attackers try to get you to click links or provide information that gives them access to your computer.
• Phishing — A thief impersonates one of your trusted contacts over email. For example, they pretend to be your bank or your employer asking you to update your login information. This also happens over the phone, when someone pretends to be a police officer requesting personal data to verify your identity because a friend or family member has been in an accident. If you’re suspicious, ask them if there is a number you can call back to verify their story.

Keep antivirus and malware updated. Research before you click or answer a link and beware of downloads sent to you (even if it comes from a friend). Set your operating systems to update automatically.

(5/9)