Be Smarter Than A Fish
...And don't get 'hooked' by phishing email asking for account information!
I want to get these links* out to you while I can. Lately I've been reading about online criminals using the same old 'line' in their phishing emails to hook suckers. Evidently there's no shortage of people dumb enough to fall for the old "There's a problem with your account and we need you to update your account information for us".
Of course I'm here to help educate those folks!
There are variations on the basic theme but it always boils down to getting your account details, Log-In credentials, etc.. The email, the linked web site (if there is one), can look just like the real one. The URL can look very similar the the actual one (looks can be deceiving!). The link [text] you're told to click on can appear to be legitimate but connect with one that's totally different.
That's why I advise everyone to keep a browser folder for each company/web site that you have a 'relationship' with. Whether it's called "Favorites" or "Bookmarks" in your choice of Internet Browser, they all save and organize shortcuts to web pages you want to keep track of for future reference (like a personalized library). When you register any kind of relationship, especially one where personal/financial information is used, add the site's home page to a folder (with the site's name identifying it) to your browser's library and use that link to go to their web site instead of a link [from an email] that claims to be from the site/business.
While you're registering for something like an online bank account or a PayPal account, check out their 'contact' information. Record details like their phone number, email addresses, and their primary URL (like http://www.comcast.net/). Note: The page(s) where you actually enter 'secure' information should start with "https://" and show you the little padlock symbol. Always use that phone number if you need to contact them instead of one 'supplied' for you in an email.
Rule #1, legitimate businesses do not ask for account information via email! Go to the support/security section of pretty much any online bank or site dealing with personal/financial information and they should all tell you this. Many times [this] message/reminder is included in a site's [legitimate] email correspondence.
Fraudulent emails frequently claim it's "Urgent", "Respond Immediately...", "Your account is about to be closed...", etc.. All designed to get you to act before THINKING (and clicking on their link.. where have you seen that warning before, eh?)
If you think an email is legitimate, contact the company/bank/web site. Just don't do it via any links or phone number supplied for you in an email. Use the ones you recorded (and 'bookmarked') previously when you set up the account (you did do that, right?). If not, use the phone book, bank brochure (if applicable), or online search.
The PayPal and Google AdWords web pages I'm giving you links to explain and advise further. I chose those two because they're both in the news being used in current email 'phishing' scams. PayPal users are a constant target for online criminals. You've probably seen them in your email (hopefully caught by the Spam/Junk filter). The Google AdWords phishing attempt is fairly new, but the method is the same old con attempt.
Now would you rather learn the smart way, or the hard way? It still amazes me how many people end up learning the hard way.
Con artists will always be around, looking for the unaware and exploiting human weaknesses. I can help change that, but most of it is up to you.
*Here are the links:
Google - "What do I do if I receive a suspicious email claiming to be from AdWords?"
Network World [article] - "Google adwords fuel new URL attack"
These pages all have links to additional information. The PayPal web site has pages and pages of excellent tips and links to even more information from other sites.
Don't be a victim, be a smart 'netizen'.
And smart netizens always THINK before they click!
"[...]— hopefully by next week.""
It really shouldn't be long now.
After reading your comment I checked a couple of places. The best places I've found to keep track of the latest goings-on is the "Mozillazine" Forums and the "Mozilla Developer News".
The Forum section called "Firefox Builds", and especially the 'thread' about the latest [Trunk] 'build' (right near the top) named "The Official Win32 20080509 [Trunk] build is not yet out." (the date and the last part varies between "out" & "not yet out") usually have the latest information.
The Mozilla Developer News isn't as current as the Forum, but there's some info there, and there's a link to a Mozilla Product Manager Alex Polvi's blog (this link is to his page talking about the top ten Add-ons for Firefox that aren't quite ready).
[UPDATE]: As I scrolled down [that] blog page reading the comments, at the bottom I found this post (by Alex Polvi):
Joe, RC1 is due to be out very soon — hopefully by next week."
So there you go Susan, straight from a Mozilla Product Manager's blog (posted today!). Although I'd say the operative word is "hopefully". I've been thinking we might see it in June, but we'll see. It seems that for this release they're going to have a good percentage of the most popular [third-party] Add-ons fully compatible at release time. In the past I've always waited to update because many of my favorite Add-ons took a while to be updated by their developers. This is a welcome change!
By the way, the MozillaZine Forums are the place to get help & advice for all Mozilla products.
But [FYI & everyone's], PLEASE read "Looking for help? Check out these resources:" (at the top of the Forum's Home page/Index).
"Search the knowledge base" should be your starting point. If after searching thoroughly you don't find an answer, be sure to post your question in the appropriate section.
Take Care
Phishing
TR,
Your columns, as always are timely. I just updated my Thunderbird yesterday, and I've also downloaded the Firefox 3 Beta 5, on the advice of my son-in-law.
It's interesting your topic of phishing. I've been inundated with e-mail wishing me congratulations, I've won some lottery, or some one wants me to be their beneficiary, or someone has died and left me piles of money. All they need is my checking account number and routing code so they can put the money in to my accounts. HA! Like I'm actually going to give that information out!
But it is surprising how many people do this. A well educated woman I know was staying at a very good hotel down in Nashua for a 2-day conference. She received a call in the middle of the night asking her to verify her credit card information, as it wasn't clearing. She proceeded to GIVE them ANOTHER CREDIT CARD NUMBER!!!! Anyone knows that once you check in, your credit card is run and a hold is placed on your account for the amount of money it's anticipated you will spend. Fortunately for her, she told her husband the next day, and he canceled the card, before any damage was done.
You are absolutely right on the phishing scams. If it doesn't feel right, call the company. Anyone doing business will appreciate the extra time you've taken to insure that your information remains secure.
Off topic, do you have any idea as to when the new Firefox will be released?
Thanks again,
Susan