Phishing, vishing and spoofing are somewhat synonymous in that they refer to forged or faked unsolicited requests for identifying information. Spoofing generally refers to the dissemination of email which is forged to appear as though it was sent by someone other than the actual source. Phishing, often utilized in conjunction with a spoofed email, is the act of sending an email falsely claiming to be an established legitimate business in an attempt to dupe the unsuspecting recipient into divulging personal, sensitive information such as passwords, credit card numbers, and bank account information after directing the user to visit a specified website. The website, however, is not genuine and was set up only as an attempt to steal the user's information. Vishing is one of the newest forms of Phishing but instead of sending the request by email the person will call you on the telephone. They will represent themselves as your bank and attempt to verify your credit card or account numbers.
- Avoid filling out forms in email messages that ask for personal information.
- If in doubt about a request pick up the phone and call a known telephone number.
- Log on to the official website, instead of "linking" to it from an unsolicited email.
- Never divulge your 3 digit code on your credit card from a unsolicited request.
- Never respond to unsolicited email or phone calls requesting personal information.