Email Phishing


Email Phishing may get an attacker your personal information like credentials, credit card information, registered mobile number, etc PII (Personal Identifiable Information) parameters.




How to perform Phishing via Email?

Step 1: Create an identical working website that is appearing quite similar to the official company website. This dummy website acts as a fake verified validation to the target to gain trust over. Ex. Gmail account login page, Facebook login page or any other website.
Step 2: An important part to ponder over is the URI or URL of the fake but working website that has to be changed minutely in such a way that the target person is not able to spot the changes easily in its link and fewer people are aware as well as concerned about this security threat. Ex. For 'gmail.com' one can modify it to 'gma1l.com' or for 'facebook.com' that can be modified to 'facebeok.com'. Users enter their details here on the fake login page without checking its original link in the Address bar.

Step 3: A backend database must be linked to the form on the dummy website's fake login webpage to record the User's credentials in the backend database.




Congratulations you are Hacked.!!!


Steps to secure yourself from this Phishing performed via Email:-

1. Open the emails that are being sent to you from trustworthy senders only. For Trust establishment and Encryption Security, you may use PGP keys also between the Sender and Receiver emails.

2. Don't open any email or click on such emails where any kind of appeasement content such as advertisements and offers are given.

3. Often such Spam emails contain malware, so users should refrain from downloading anything that the email contents redirect to which are usually unverified and nonsecure sources.

4. Always double-check and verify the website URL before entering any secure information into the faked dummy page by searching about the given website link in any search engine and cross verifying its URL.
Location: Ahmedabad, Gujarat, India

Comments

  1. Anonymous3 February 2022 at 20:11

    youtube - Cision - YouTube - Vimeo
    youtube - Cision - YouTube Play Videos · Stream Live Videos · Watch Live TV Videos · Watch Live Stream Live Games · Watch Live Video Games · Stream Live Stream Live download youtube videos Games

    ReplyDelete

Post a Comment

Popular posts from this blog

Set password by default when transfering data through xender hot spot network.

Image
We are going to explain how to transfer data securely through xender app. Whenever we turn on hot spot of xender then mobile hot spot network turned on through a xender which is by default open network. In this case if our data connection is on then any one can access our network and may they perform crime through network. So always keep your network password protected. How to Set password in xender when turned on hot spot through it 1.  Go to settings menu in xender app. 2.  Under the connect phone tab click on to set connection password. 3.  At that time it will ask password give password on pop up box. 4.  Done. Now check your hot spot network is now secure with password.
Read more

Browser cache weakness

    Browser cache weakness Severity: Medium Vulnerability description Browsers can store information for purposes of caching and history. Caching is used to improve performance, so that previously displayed information doesn’t need to be downloaded again. History mechanisms are used for user convenience, so the user can see exactly what they saw at the time when the resource was retrieved. If sensitive information is displayed to the user (such as their address, credit card details, Social Security Number, or username), then this information could be stored for purposes of caching or history, and therefore retrievable through examining the browser’s cache or by simply pressing the browser’s Back button. Impact Browsers often store information in a client-side cache, which can leave behind sensitive information for other users to find and exploit, such as passwords or credit card numbers. The locations at most risk include public terminals, such as those in libraries and Inte
Read more

Disable antivirus without any administrative rights

Image
Disable antivirus without any administrative rights Yes user can disable antivirus without any rights. Step 1.  For that first user need to enter in BIOS settings by starting system.( for windows 8.1 and windows 10 short cut key is F10 key.) Step 2.  Now forward your system date to that when antivirus licence expiry date. Step 3.  Now just save all the settings and restart the system. Step 4.  Now check if antivirus automatically disabled or not if not then again forward date one or two year. Step 5.  Follow step from 1 to 3. Step 6.  Now done your antivirus is disabled without any admin rights. After that just delete antivirus folder from the C drive where it is installed. Step 7.  It's done now work without antivirus or with disabled antivirus in your system.
Read more