Phishing is the attempt to obtain sensitive information such as usernames, passwords / Login Credentials, and credit / debit card details (and, indirectly, money), often for malicious reasons (usually to carry out various types of financial fraud), by disguising as a trustworthy entity in an electronic communication. The word is a neologism created as a homophone of fishing due to the similarity of using bait in an attempt to catch a victim. Phishing is typically carried out by email spoofing or instant messaging, and it often directs users to enter personal information at a fake website, the look and feel of which are almost identical to the legitimate one. Communications purporting to be from social web sites , auction sites, banks, online payment processors or IT administrators are often used to lure victims. Phishing emails may contain links to websites that are infected with malware.
An attacker masquerades a trusted entity, such as a bank, government, ISP (Internet Service Provider), web site, and tries to trick people into giving up their private information. These attacks often take the form of “urgent” emails asking people to take immediate action in order to prevent some impending disaster. Examples include topics such as the following:
People who click on the links in these emails/test may be taken to a phishing site – a web page that looks like a legitimate site they’ve visited before, but is actually controlled by an attacker/hacker. Because the page looks familiar, people visiting these phishing sites enter their username, password, or other confidential information on the site. What they’ve unknowingly done is given a third party all the information needed to hack their account, steal their money, or open up new lines of credit in their name. They just fell for a phishing attack.
The concept behind such an attack is simple: Someone masquerades as someone else in an effort to deceive people into sharing personal or other sensitive information with them. Phishers can masquerade as just about anyone, including banks, email and application providers, online merchants, online payment services, and even governments. And while some of these attacks are crude and easy to spot, many of them are sophisticated and well-constructed. That fake email from “your bank” can look very real; the bogus “login page” you’re redirected to can seem completely legitimate. These emails have no connection with Magma and Magma does not use any such methods.
If you think you may have encountered a phishing site, please contact us at email@example.com or call us at toll free: 1800 266 3202 with the relevant details.
Our company accepts no liability for the content of such emails, or for the consequences of any actions taken on the basis of the information provided, unless that information is subsequently confirmed in writing. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.
The good news is there are things you can do to steer clear of phishing attacks and phishing sites: