Network Security Blogs

Internet and Computer Security Advisories and Updates

» » How to Identify Phishing Email Structure

How to Identify Phishing Email Structure

Add Comment
Email Phishing
Thursday, August 20, 2015
how to identify the phishing email structure ?



when we received and email we will read it from the title until the footer. So, now how we want to identify either this is phishing mail or not. let say the organization is iium.edu.my

1. from a picture above number 1 shows a source email address. it means from who the email come from. in the circle you can see the address. that is the genuine address. but, the hacker modify the name to confuse the recepient it use SERVER DESK

2. hacker start with GENERAL NOTICE ,  supposely the iium community should know what is the normally word is using among the community

3. Pointing a mouse ( NOT CLICKING) to CLICK HERE shows this url webmail-iium-edu-my.bravesites dot com it is not from iium community domain. it is an externally domain. it seem SUSPICIOUS

4. ending sentences normally use a name of unit in the organization.



maybe you are new staff working in your organization, so you are not familiar with communication style, procedure in any changes and domain reference. what so ever the procedure if it involves your credentials username or password you should call the service center.

NEVER REPLY AN EMAIL WITH YOUR SECRET CREDENTIALS.


another site you can use to double check is

1. using google safe browsing - http://www.google.com/safebrowsing/diagnostic?site=yoursite.com but google safebrowsing is less precise.

below is an example of phishing email look alike from international company


Other structure of Phishing Mail

1. http://iiumcybersafe.blogspot.com/2015/08/phishing-links-check-it-before-you.html


Example of other phishing activities

1. financial phishing video http://iiumcybersafe.blogspot.com/2013/07/phishing-your-financial-credentials.html

2. phishing at gmail http://iiumcybersafe.blogspot.com/2014/10/gmail-phishing-alert-beware.html

3. oil and gas phishing email http://iiumcybersafe.blogspot.com/2014/09/received-email-from-exxonmobil.html

4. sms phishing http://iiumcybersafe.blogspot.com/2014/10/phishing-bank-info-through-sms.html

5. maybank2u phishing mail http://iiumcybersafe.blogspot.com/2014/10/again-maybank2u-fake-websites.html

6. maybank2u phishing on android (that already infected by zeus )
http://iiumcybersafe.blogspot.com/2014/09/alerts-malware-targets-maybank2u-on.html

0 Komentar untuk "How to Identify Phishing Email Structure"

 
Copyright © 2014 Network Security Blogs - All Rights Reserved
Template By shahdinar