The internet can be a scary place if you're not careful. We spend so much time protecting ourselves against hackers and viruses, sometimes we let our guard down when we're dealing with real people.
But people can be dangerous too. Just like the real world, the internet has its share of baddies out to steal your cash (not to mention your pride) by using technology combined with age-old confidence tricks. You don't have to be constantly on guard, but a little caution and know-how will make you a lot safer.
Here are some of the scams to watch out for, and some tips for staying safe.
SOME OF THE SCAMS YOU'LL ENCOUNTER
419 scamsNamed after the section of the Nigerian criminal code they violate, 419 scams are emails that claim to be from various dodgy organisations, like European lotteries that you never entered or African banks that claim you're the last living relative of a Moroccan billionaire. They'll ask you to get in touch to claim a reward, usually something ludicrous like $100 million, almost always typed out afterward ("ONE HUNDRED MILLION US DOLLARS").
The catch, besides the money doesn't actually exist, is that they'll ask for some money to cover the costs of getting the money to you. A variant of this scam asks for money to cover duties for goods held by Customs.
Phishing These emails pretend to come from banks or auction sites like TradeMe or eBay. Sometimes they'll ask you to confirm your password, sometimes they'll say there's been "unauthorised activity" on your account. Either way the email will contain a link to log-in. Do not click on this link, even if it appears to be genuine, because it will lead you to a fake site that often look real but is just out to steal your info. Type your bank's address in your Web browser and log in normally instead.
Spear Phishing Like the name implies, spear phishing is a more targeted attempt to steal personal details. Typically you'll receive an email or phone call where they refer to you by name. The message may claim to be from your company's IT department or bank or even the police. They've targeted you not because you've got a reputation for being a dupe, but because your bank account is probably healthy or they want to break into your company's systems. Instead of giving out any information, get their name and then check it and what they're doing with the appropriate authorities.
Mules Have you ever received a job offer that seemed like you'd be making money just for having a New Zealand bank account? Don't be fooled. Foreign scammers need a Kiwi bank account to transfer money into because there are blocks or limits on transferring money overseas over the internet. Being a mule is illegal, and ignorance won't be much of an excuse when the police come knocking.
Love traps Dating websites aren't just for lonely hearts. There are also scammers out there pretending to be girls (and guys, but mostly girls) searching for love. Typically they will let the romance begin to bloom, then have a personal crisis and need a loan or reveal they actually live in another country and could you please send money for a plane ticket because they're really eager to see you in person.
Some clever scammers have even written a computer programme that automatically flirts with men to wheedle out their personal details.
To be safe steer clear of overseas sites (you don't need a Russian or Vietnamese bride that badly) and be extra careful talking to people on Kiwi dating websites who live outside the country. If something seems fishy, use your brains instead of other body parts to make a decision. Maybe they really are "crazy about Kiwi guys", but the smart money is they're after your wallet rather than your heart.
Scam websites Scam websites come in a few flavours. There are fake bank and auction websites that sit on web addresses which are close to the real thing (like www.mybnak.co.nz). These opportunist sites exist solely to trick people who aren't careful typists into giving up their account details. They often use the real bank's logo and images.
Sometimes the websites are even sneakier. They will automatically load the details you put in, say for your bank account, into the real bank's website, so you can't tell anything's wrong. Then when you log out, the scammers keep the connection open and transfer your money out.
Fake sites go one step further and try to hijack your PC. Called drive-by-downloads, they exploit flaws in your web browser to make you automatically download spyware or viruses.
Finally, there are scam websites pretending to be legitimate charities or businesses. After every disaster fake charities will spring up looking for donations, so stick to the official websites of the ones you know. The same is true for online shops. Don't buy unless you're sure it's legit, or you could lose your cash and your credit card details.
HOW TO SPOT A SCAM
Bad grammar and spelling - English often isn't the first language of the scammers, and if you read carefully you can spot tell-tale mistakes that a real bank wouldn't make.
The email asks you for your account details - Emails from banks or TradeMe should never ask you for any of your personal details. Email is not a secure way to communicate because it's hard to verify who exactly is on the other end and the message can be intercepted.
If it sounds too good to be true, it is - Sometimes good things happen. People really do win the lottery. But not if they haven't bought a ticket. If you could really make money doing nothing, everyone would be rich.
WHY DO PEOPLE FALL FOR SCAMS?
Sometimes they're stupid, but more often they're desperate or not paying attention. Emails from fraudsters pretending to be your bank and fake websites often disguise themselves well, using official logos and even real employee's names.
People do fall for 419 scams too, amazingly enough, usually because they desperately need the money and think the email is a godsend. If someone wants to believe something is true, they'll usually find a way to convince themselves.
Spear phishing is "social engineering". If someone called you up at work pretending to be from your company's IT department, you probably wouldn't think someone was trying to scam you.
Ads for mules can go the extra mile to appear to be genuine, using employment websites and official looking websites of their own.
DOH! WHAT TO DO WHEN YOU SCREW UP
I clicked on a link in a phishing emailYou're probably ok if you didn't enter in any details. Shut down your browser (and internet connection if you can) and run a full scan for viruses and spyware.
I typed in my bank account/credit card/auction account details Call your bank immediately. The sooner you do the less likely you'll be held liable for the money the fraudsters spend on your behalf.
They've stolen my money The bad news is the criminals responsible are usually overseas, and the chances of catching them are pretty much nil. ASB and Kiwibank will reimburse losses on a case by case basis. If your computer is up to date and running security software and you tell your bank quickly what's happened, the banks will look on it pretty favourably.
Westpac will reimburse all stolen money and BNZ will fully reimburse customers who use their NetGuard system. ANZ and National offer the same guarantee as long as you're don't actively participate in the fraud, like for a mule scam.
ANZ, National, ASB, Kiwibank and BNZ offer "two-factor identification" - numbers on tokens or cards which you use as well as your password to log in. This extra security measure makes it much harder for fraudsters to get into your account, so if you can, sign up for it.
I used a computer in an internet café to check my email or bank balance Never use public computers like in libraries or internet cafes to log into anything important. If you have, change your password as soon as you can from a secure computer.
I replied to a fraud email Whether you're asking for more info or telling the scam artists they're scum, it's a bad move. You're just confirming your email address is valid and active. Expect lots more spam in future.
I think I downloaded a virus or spyware Update your security software and run a complete scan on your system. If you're really paranoid, reformat your hard drive and reinstall your operating system
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment