Internet banking is a safe method for easy money transactions. But there are Internet Fraudsters in the web to steal your personal informations and bank details through fraudulent emails (Email Spoofing). By clicking the link provided in the email, you may be in trouble and you will be Phished by these Fraudsters. The Phishers usually prompt you to reveal the online bank transaction details. Phishing is the high-tech form of Internet piracy in which the phisher steals the personal and confidential informations like bank account, passwords, credit card number, personal details etc related to bank transactions. This is an advanced form of high tech Phishing known as Social Engineering which is the method of manipulating the people into performing action by taking them into confidence.

The Phisher use the informations of the online banking to withdraw money from the victim’s account or run up bills using the credit card. Phishers take the advantage of the software and security weakness of the account holders. Since the user keeps the account number and other bank details secrete, the phisher uses tricks to get the details from the user.

Email Spoofing

This is the email activity in which the address and other details of the email are altered to make it fraudulent. The word Spoof means Innocent Parody. But to avoid confusion and to intimate the seriousness of the fraudulent activity, banks and other agencies use the terms Phishing or Fraudulent to such malicious activities. Spoofing is used to indicate Spam and Phishing emails that hide the details of its origin. Although the email has a sender address, it is coming from a different source which can be of malicious origin. Sometimes the Spammer gives his address in the Reply to field so by giving the reply, the spammer will track the details of the email.

How Phishing occurs?

Phishers use both technical subterfuge and social engineering methods to steal the personal identity and datas of bank transactions. The routing towards Phishing is as follows:

  1. The Phisher sends a fraudulent e mail which looks like a genuine email from the bank.
  2. In the email, the phisher invites the client to go to a hyperlink provided in the email.
  3. When the hyper link is clicked, the customer will be directed to a fake website which looks like the genuine bank web site.
  4. The phisher advice the customer to update the password, bank account number, personal details etc through the fake web site.
  5. When the customer submits the details, he will get an error page and the customer is Phished by a stealer.

How to Protect Bank accounts?

Phishing attempts usually occur through fake emails. So it is better to understand the way to protect the bank details.

  1. Do not click or open any unexpected email from an unknown source.
  2. If you get a suspected email, do not click the hyper links provided along with it. It may contain malicious codes for Phishing.
  3. Do not reply to such fraudulent emails and delete it immediately.
  4. Ignore and close all unwanted pop up windows that appear during browsing.
  5. Do not reveal the passwords or secrete pin numbers in internet or mobile phone.
  6. Always keep the pin number of credit and ATM cards secret and do not reveal the same to any person.
  7. Always enter into the website of the bank by typing the URL in the address bar. Do not click on the typed in address already in the address bar.
  8.    Always ensure that the opened page contains https:// and not http://
9. Before opening the account, ensure that a lock icon is present at the right part of the bottom of browser and a verification certificate of the bank authority.

  1. The banks usually do not ask to update the details through email alerts.
  2. If you accidentally provided the information to a fake website, change the password immediately. If the same password is used for other sites, change all the passwords immediately.
  3. Report the matter to the bank about Phishing by clicking the Report Phishing link provided in genuine bank website.
  4. Verify the account number and other details in the account page.
  5. If  any unwanted entry is found in the account page, immediately report the same to the bank.