How to Protect Yourself from Cyber Crimes

What is it?
Cybercriminals pretend to be a trustworthy source in order to acquire sensitive personal information such as usernames, passwords, social security numbers, and credit card details

What does it look like?
An email from a seemingly legitimate email address instructs you to click on a link to take action (e.g., “validate your account,” “confirm your identity,” “access your tax refund”). The link brings you to a website requiring you to enter your personal information

What’s the impact?
Victims of phishing may have malware installed on their computer systems or have their identity stolen.  

How can you defend against it?

1) Hover over questionable links to reveal the true destination before clicking. 

2) Beware that secure websites start with https, not http.

What is it?
A fake email header that gives the impression the email is from someone or somewhere other than the actual source, with the goal of tricking the recipient into opening and responding to the email. Phone spoofing is a comparable common cyber threat using a similar phone number.

How does it happen?
The cybercriminal creates an email address nearly identical to your email address (i.e., off by a character).

What’s the impact?
Similar to the other cyberattacks we’ve discussed, your money is stolen, and you become the victim of fraud and/or identity theft.

How can you defend against it?

1) Carefully check the incoming emails for the proper email address and the accuracy of the spelling of the sender’s name. 

2) If an email or phone call are questionable, contact the sender directly, using the email address or phone number you have on file for that individual.

What is it?
This involves manipulating or impersonating others to divulge sensitive, private information, and then demanding financial transactions be executed to avoid consequences.  

What’s the impact?
The cybercriminal commits fraud, steals your money, and disappears.

How can you defend against it?

1) Be selective about who you allow to join your social networks. 

2) Be cautious about the information you choose to share on social media, keeping your personal information private (e.g., home address, phone number, employer, vacation dates, birthdate).

How does it work?
Malicious software is created to damage/disable computers and computer systems, steal data, or gain unauthorized access to networks.

What does it look like?
Examples of malware include viruses, worms, trojan horses, ransomware, and spyware.

How does it happen?
Malware may be installed on a computer when a user clicks an unsafe link, opens an infected file, or visits a legitimate website that could contain adware.

• Nearly 20% of all internet users experienced a malware attack of some kind. Source: Kaspersky Security Bulletin  ‘19
• 94% of malware was delivered by email. Source: 2019 Verizon Data Breach Investigations Report
• The #1 disguise for distributing malware– fake invoices. Source: 2018 Symantec Internet Security Threat Report
• A man stole over $100 million from Google and Facebook between 2013 and 2015 by sending fake invoices. https://www.npr.org/2019/03/25/706715377/man-pleads-guilty-to-phishing-scheme-that-fleeced-facebook-google-of-100-million

What’s the impact?
Malware can delete files or directory information, or it may allow attackers to covertly gather personal data, including financial information and usernames and passwords.

How can you defend against it?

1) Install the most up-to-date antivirus and anti-spyware software on all devices that connect to the Internet and run regular scans to update the software when available.

2) Make sure your networking equipment and computers are all still supported by the manufacturer.