Protecting yourself
in the digital age
Protecting yourself in the digital age
Social engineering takes many forms. Anyone who spends time online, communicates via 电子邮件,或接听电话都可能成为社会工程的目标,并成为受害者 cybercriminals.
通过更多地了解社会工程以及它如何被用来对付你来保护你自己. 知道要寻找什么,如果发生了该怎么做,可以帮助你减少有人窃取你的个人或雇主数据的机会, cash and assets from your financial accounts, and more.
利用希望或恐惧,犯罪分子将利用电子邮件广泛撒网收集个人数据 from unsuspecting targets. This is known as phishing. In contrast, spear phishing happens 当一个特定的用户的个人信息被用来直接瞄准他或她.
Look for new messages
Look for new messages
寻找询问个人资料的信息,比如结婚纪念日,你最喜欢的人的名字 pet, or your children’s birthdays. These inquiries may look friendly (e.g., “Let us help you celebrate!),而实际上罪犯可能已经掌握了你的一些信息 想知道更多缩小账户访问信息.
这些询问可能通过网络钓鱼中的电子邮件或电话进行,称为网络钓鱼.
Never provide sensitive information
via e-mail or to someone who calls
you directly, including:
犯罪分子引诱用户下载伪装成合法、无害的恶意文件 附件,如发票、收据或其他文件.
用户被引诱点击超链接,将他们带到恶意软件所在的网站 下载,或者受害者可能会被要求提供敏感信息,通过一个在线 form.
Be aware of any form of
unsolicited contact, and don't be
coerced by fear, hope, or urgency.
Don't give personal information
or make a payment to anyone
who calls you.
Be careful of what you post
about your family information,
locations, travel plans, etc. on
social media and neighborhood
message boards.
Don't trust an unusual sense
of urgency. Tactics such as:
"Account Locked," "Package Was
Undeliverable," or "Security Alert,
Fraudulent Activity" should be a
tip-off.
Double-check the e-mail address
来验证消息是否来自合法的发送方. Think about
whether this is an e-mail they
would typicall send you.
Check to see if the grammar and
language fit the supposed sender.
Do not click on any link unless
you are certain it is legimate.
Hyperlinks can be "spoofed".
Hover your mouse over a
超链接,看看链接到底带你去了哪里.
Never open an attachment from
an unknown source.
Never give your personal
information to unsolicited
callers no matter how much
they insist.
When in doubt, call them back
at the phone number on your
account statement – not at a
number provided by the caller.
Be aware that computerized
voices leaving messages
regarding legal action against
you are never real.
Do not let callers take control
of your computer to "fix" a
problem.
Don't trust your caller ID – it
can be spoofed.