Data theft with the help of phishing-e-mails

What is Phishing?

The word phishing comes from the word fishing, to fish you something. The aim of the attacker is to fish the data of the user via a special Trojan or through the input from data due the user for empty your bank account. We differ between two different methods of phishing

  • Phishing e-mails with a request to enter data
  • Phisihing e-mails with an possible invoice or other documens in the attachment, in truth in the attachment is a malware file

Both methods can be done random or selective (e.g.: via a previous skimming).

Gets phishing more and more dangerous?

The question we can answer easily with Yes. Not only e-mails for entering data get more popular, also the number of malware samples which are found through IKARUS in e-mails rises explosive. In the year 2011 there were found in average 59 unique samples per month, in the first half year 2014 it were already 1140 samples per Month – that’s a rise from about 20 times more.

Also the methods of the hackers are getting better and better and the e-mails are difficult to differ from the real ones. In former times identifying phishing e-mails was very easy. The e-mail was in a very bad English or the e-mail was in a completely different language.

But the last outbreak was us shown that the hackers are getting better. A alleged IKEA e-mail could also not be differed easily by experts from the original one.

Statistic of unique malware samples in e-mails

How can I protect myself?

The first and most important thing If you are reading e-mails is, to read with your logic:

  • The e-mail seems to be strange, you hadn’t order something or you don’t know the sender then this would be the first signs.
  • At the opening of an attachment, think better twice if the sender is trustable. If the attachment ends with a file extention which you don’t know or which seems strange then be careful.

Additionally you can protect yourself with security products from this danger. IKARUS for example filters all malicious e-mails before the reach your inbox.

Also with our desktop anti-virus protection your are good protected if you use Outlook or Outlook Express. Also here an anti-spam module is integrated and if you open the Trojan, IKARUS anti.virus disables the access and gives you a hint.

What should I do if I noticed that I am a victim of a phishing attack?

  • Ban or edit immediately all login details of accounts to minimize the damage
  • Monitor your accounts careful, you can find strange bookings or in your customer account is an order not from you?
  • Take help from IT-experts of course also from the IKARUS support team
  • Think about a new touchdown of your system – look also here to somebody for advice!
  • Inform the affected company, so the faked ssender, so that the company can alert other customers!

How does such e-mails look like?

Possible e-mail from the Swedish furniture manufacturer IKEA
Possible e-mail from a bank with the request to entry data
© 2019 IKARUS Security Software GmbH