2) Don’t use the links in an email to get to any web page, if you suspect the message might not be authentic.

3) Always ensure that you’re using a secure website when submitting credit card or other sensitive information via your Web browser.

4) E-mails with misspelled words or wrong punctuation.

5) If an e-mail addresses a user in a generic fashion, it is likely to be an attempt at phishing.

6) Cross site scripting

If you suspect that you have received a phishing email, do check with the organisation involved and/or check the organisation’s official website for any information.

Sources: Anti-Phishing Working Group, US Federal Trade Commission

Related Links:
Channel News Asia article on Citibank and OCBC
FASTEN UP! An Infocomm Development Authority of Singapore (IDA) initiative

All websites last accessed 15th July, 2006.

Read on for suggested books on phishing and other scams!

The Symantec guide to home internet security by Andrew Conry-Murray and Vincent Weafer
Upper Saddle River, N.J. : Addison-Wesley, c2006
Call No.: 005.8 CON -[COM]
Click here for item availability.
Description: The Internet is crawling with risks; if you bank or shop online, or even just surf the Web and send e-mail, you are exposed to hackers, thieves, and con artists. Today’s bad guys don’t need to pick your locks or break your windows: they can attack you and your family over the Internet. Are you prepared? Enjoy a safer online experience with easy, step-by-step help from Symantec, the world’s most trusted security provider. This easy-to-understand book helps protect you against Internet threats. Written specifically for nontechnical computer users, you’ll learn simple ways to keep you and your family safe and secure while online.

Geeks On Call PC security and privacy : 5-minute fixes by J. R. King
Indianapolis, IN : Wiley Pub., 2006
Call No.: 005.8 KIN -[COM]
Click here for item availability.
Description: Learn how to configure Internet Explorer and Firefox for safer web browsing and create separate user accounts for your family members that limits user access levels, and how to protect your laptop and use public computers safely. Other security tips in the book includes those for e-mail, Internet, data and digital threats. Also contains practical information about safe instant messaging, chatting, e-shopping and phishing etc.

Phishing exposed by Lance James
Rockland, Mass. : Syngress Pub., 2005
Call No.: 364.168 JAM
Click here for item availability.
Description: World-renowned phishing expert Lance James exposes the technical and financial techniques used by international clandestine phishing gangs to steal billions of dollars every year. The book is filled with technically detailed forensic examinations of real phishing scams. Armed with this invaluable intelligence, law enforcement officers, system administrators, and fraud investigators can resolve existing cases and prevent future attacks.

Phishing : cutting the identity theft line by Rachael Lininger and Russell Dean Vines
Indianapolis, Ind. : Wiley Pub., c2005
Call No.: 364.168 LIN
Click here for item availability.
Description: In Phishing, Rachael Lininger: Offers case studies that reveal the technical ins and outs of impressive phishing attacks. Presents a step-by-step model for phishing prevention. Explains how intrusion detection systems can help prevent phishers from attaining their goal-identity theft. Delivers in-depth incident response techniques that can quickly shutdown phishing sites.

Answered by Chan Wai Ling, Librarian, Adult and Young People’s Services

Found this question interesting? What do you think?
Post your comments, or send further questions about this or any other topic to ask@nlb.gov.sg