What is “phishing”? This is an increasingly frequent topic publicized in the media. This is a specific, calculated method of deception. His offender is impersonating another person or institution. His intention is to stealthily steal specific information, such as login details into the bank’s website, or other detailed information, such as a credit card.
Phishing – substituted website
Another way for a criminal to act is to convince a potential victim to perform certain activities or activities that will result in him being injured. Speaking ordinary language. The perpetrator of such a crime prepares, let’s set up a website, reminiscent of a real bank website.
There are various messages regarding the need to confirm your data, re-send your login and password to confirm. Inattentive user completely unaware of the fraud, voluntarily discloses to him all the data about his account. What is his surprise when he enters the same account in a few moments and it turns out that it is empty.
Fortunately, this is not such a simple and common practice, as the media say.
Green padlock in front of the address
However, extreme caution when logging into the account and not sharing any data about him will protect us from unpleasantness. And just look before logging in to the bank’s website at the address bar and certificate, i.e. a small, green padlock that is at the beginning of the url.
Sometimes the padlock is from the beginning, sometimes it appears along with the bank’s name and yet another time when we get to the subpage where we log in, whether we are applying for a deposit or an account.
Watch out for special ads and links to them
Often, we can also meet with various special actions, ads or other links, after clicking, which opens first the site without a certificate, but offering the products. Only when we click “Next” do we go to the right page. In such situations, we do not need to look for any fraud.
The only thing we should get for protection, often the whole life achievements, is the reflex of peeking whether the certificate appeared in the address bar before we log in. So, checking if the bank’s website is authentic is not that complicated. All you have to do is check that the page where you are logging in has a certificate and do not log in where it is not present.
Banks do not apply such practices in which they ask their clients to provide their personal data, preferably by email. Only what they can ask us through the hotline is data on the PESEL number, mother’s maiden name, date of birth, and information whether we have any of his products, such as loans, personal account or other. And all this to confirm our identity.
Let’s protect our login and account password
However, the login and password for the online account remain our sweet secret. It may also happen that a bank employee will ask you to provide a telecom, these are the selected digits of our password. We will never be asked to enter the entire password. By design, online banking is safer than traditional banking, so if we exercise due care ourselves, phishing our personal data for evil purposes is kept to a minimum.
That is why most banks use password masking. Of course, it would be much more convenient to enter the password in full. But is it safer? Certainly not! Entering only selected characters from our password, known only to us, reduces the risk of decrypting the password to a minimum. It is a pity that not all banks use password masking.
Let’s check the account number
We also often want to make our lives easier and by making a transfer we copy the recipient’s account number and rarely who checks what was copied there. And you can already hear about a virus that replaces the number when copying. So, what seems to facilitate us can complicate our lives a bit.
Please note that the number we copied is the same as the one that should be there. It won’t take much time and we can save our money.
One-off SMS passwords or so-called tokens are another security for online banking. It’s very convenient and what is important – a free form of security. However, not as safe as the first ones.
Because, theoretically, if somehow our personal data for logging into the online account flowed into unauthorized hands, the same hands could find our phone number in the administration panel. It’s not that simple, but unfortunately not impossible.
Fortunately, you can hear a lot about it, but there are really few cases of clearing someone’s account. And if they happen, it is only because of the carelessness of its owner. The use of credit or debit cards is a much greater threat. Why? Because in their case it is enough to have this card’s data to make purchases online.
Despite all these rumors about the dangers of using an online account, there are few cases of emptying the account in this way, but that does not change the fact that we need to remain vigilant