Original Post
Phishing what to look for and how to avoid it.
If it looks like it's too good to be true it usually is...
We've all seen them, websites offering you free Toricredits, items and even QI (websites that offer to gain you more QI by asking for your toribash details, be it paid or unpaid). These websites are more than likely to be phishing websites and should be avoided at all costs.
Phishing- is an attempt to criminally and fraudulently acquire sensitive information, such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication. It is a serious offence and is also known as Identity Theft.
These websites may look professional, they may even look like official websites such as Xbox.com, even going as far as using Xbox.com's graphics and sign in procedure, but they all have one thing in common to obtain your details for their own purposes. As with the case of toribash related phishing websites, once they have got your details they can change your email account, blocking you from access to it. Once this has happened you will also lose all access to your toribash account too.
It is not only websites that do this, emails look like they come from banks are frequently popping up in our email inboxes. Remember official banks and services will not ask for passwords or personal details in an email.
Another way these tricksters work is by asking you for your toribash details over irc or game chat, they can be very clever and see it is requiered to join there clan.
So what can you do to avoid these?
Always keep an eye on the URL (web address) that you are visiting. Only visit websites you trust, as with the case of toribash.com. websites that ask you to log in. In fact the best way to avoid yourself being caught by one of these phishing websites is to not be so greedy.
Go on http://forum.toribash.com/chat_view.php?channel=support and tell a admin.
or email [email protected].
Never use any kind of QI service, even if you think you know the person.
Use the phishing filter in Internet Explorer to report websites which come up with a yellow or red warning. On the Internet Explorer 7 Tools menu, click Phishing Filter/ report this website.
A note from the community;
Another note should be don't join a fan site and use your Tb login as your login for the site. Some are made up in hopes that you'll use the same info to log in at that site then they've got you. It's important not to always do what your friends might send you. It may be their account is hijacked and the hijacker is sending you info in hopes that you'll do it because you trust your friend.
There are also websites that are set up so that you can report phishing websites.
Remember- If it looks like it's too good to be true it usually is.
We've all seen them, websites offering you free Toricredits, items and even QI (websites that offer to gain you more QI by asking for your toribash details, be it paid or unpaid). These websites are more than likely to be phishing websites and should be avoided at all costs.
Phishing- is an attempt to criminally and fraudulently acquire sensitive information, such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication. It is a serious offence and is also known as Identity Theft.
These websites may look professional, they may even look like official websites such as Xbox.com, even going as far as using Xbox.com's graphics and sign in procedure, but they all have one thing in common to obtain your details for their own purposes. As with the case of toribash related phishing websites, once they have got your details they can change your email account, blocking you from access to it. Once this has happened you will also lose all access to your toribash account too.
Once the victim visits the website the deception is not over. Some phishing scams use JavaScript commands in order to alter the address bar. This is done either by placing a picture of a legitimate URL over the address bar, or by closing the original address bar and opening a new one with the legitimate URL.
An attacker can even use flaws in a trusted website's own scripts against the victim. These types of attacks (known as cross-site scripting) are particularly problematic, because they direct the user to sign in at their bank or service's own web page, where everything from the web address to the security certificates appears correct. In reality, the link to the website is crafted to carry out the attack, although it is very difficult to spot without specialist knowledge. Just such a flaw was used in 2006 against PayPal.
It is not only websites that do this, emails look like they come from banks are frequently popping up in our email inboxes. Remember official banks and services will not ask for passwords or personal details in an email.
Another way these tricksters work is by asking you for your toribash details over irc or game chat, they can be very clever and see it is requiered to join there clan.
So what can you do to avoid these?
Always keep an eye on the URL (web address) that you are visiting. Only visit websites you trust, as with the case of toribash.com. websites that ask you to log in. In fact the best way to avoid yourself being caught by one of these phishing websites is to not be so greedy.
Go on http://forum.toribash.com/chat_view.php?channel=support and tell a admin.
or email [email protected].
Never use any kind of QI service, even if you think you know the person.
Use the phishing filter in Internet Explorer to report websites which come up with a yellow or red warning. On the Internet Explorer 7 Tools menu, click Phishing Filter/ report this website.
A note from the community;
Another note should be don't join a fan site and use your Tb login as your login for the site. Some are made up in hopes that you'll use the same info to log in at that site then they've got you. It's important not to always do what your friends might send you. It may be their account is hijacked and the hijacker is sending you info in hopes that you'll do it because you trust your friend.
There are also websites that are set up so that you can report phishing websites.
Remember- If it looks like it's too good to be true it usually is.
NON-EXISTING!
6th Dan Black Belt
Join Date: Jan 2011
Posts: 1,288
