Country

Phishing-E-Mails

Data theft with the help of phishing-e-mails

What is Phishing?

The word phishing comes from the word fishing, to fish you something. The aim of the attacker is to fish the data of the user via a special Trojan or through the input from data due the user for empty your bank account. We differ between two different methods of phishing

  • Phishing e-mails with a request to enter data
  • Phisihing e-mails with an possible invoice or other documens in the attachment, in truth in the attachment is a malware file

Both methods can be done random or selective (e.g.: via a previous skimming).

Gets phishing more and more dangerous?

The question we can answer easily with Yes. Not only e-mails for entering data get more popular, also the number of malware samples which are found through IKARUS in e-mails rises explosive. In the year 2011 there were found in average 59 unique samples per month, in the first half year 2014 it were already 1140 samples per Month – that’s a rise from about 20 times more.

Also the methods of the hackers are getting better and better and the e-mails are difficult to differ from the real ones. In former times identifying phishing e-mails was very easy. The e-mail was in a very bad English or the e-mail was in a completely different language.

But the last outbreak was us shown that the hackers are getting better. A alleged IKEA e-mail could also not be differed easily by experts from the original one.

Statistic of unique malware samples in e-mails

How can I protect myself?

The first and most important thing If you are reading e-mails is, to read with your logic:

  • The e-mail seems to be strange, you hadn’t order something or you don’t know the sender then this would be the first signs.
  • At the opening of an attachment, think better twice if the sender is trustable. If the attachment ends with a file extention which you don’t know or which seems strange then be careful.

Additionally you can protect yourself with security products from this danger. IKARUS mail.security for example filters all malicious e-mails before the reach your inbox.

Also with our desktop anti-virus protection your are good protected if you use Outlook or Outlook Express. Also here an anti-spam module is integrated and if you open the Trojan, IKARUS anti.virus disables the access and gives you a hint.

What should I do if I noticed that I am a victim of a phishing attack?

  • Ban or edit immediately all login details of accounts to minimize the damage
  • Monitor your accounts careful, you can find strange bookings or in your customer account is an order not from you?
  • Take help from IT-experts of course also from the IKARUS support team
  • Think about a new touchdown of your system – look also here to somebody for advice!
  • Inform the affected company, so the faked ssender, so that the company can alert other customers!

How does such e-mails look like?

Possible e-mail from the Swedish furniture manufacturer IKEA
Possible e-mail from a bank with the request to entry data
© 2017 IKARUS Security Software GmbH