|
Which sites are affected? Mostly sites, using automated password retrieval with a mass audience, with a one step log in process, which may are may not include online password resetting via email verification. I mostly get invitations from fake bank sites, eBay and the like, all of which have extensive articles on their own sites on how to avoid getting stung by tricksters.
I admit it is very difficult to distinguish a fake email from a real one, as tricksters copy the feel and look of the email including graphics and names and when you are on a busy and hectic day your awareness level drops lower and your subconscious enables you to react to the trusted name.
Additionally fraudsters copy the whole login page of the site onto their site and it looks exactly like the original and they invite you to put your log in details into the appropriate boxes and then just collect this information with more or less potential to defraud you.
How to check and avoid being tricked
The first check should be the sender of the email requesting you to press a link to enter your details on a web page.
The email sender will have an email address very much like the real thing with the tradename in the email, however most fake emails have some kind of clue, which distinguishes the origin, like some email service name.
The site to which you click on has the bank or famous name in its URL but either before or after some other extension.
If in doubt ring the company and ask them to verify their web address and whether they send the email, check their letters or your bank statements for the correct URL address to go to for logging in.
The safest way is to ignore all emails asking you to verify your details by clicking through to a web page, which requests a user name and password.
How its done
The best way to avoid being tricked is to understand how they do it.
They rent a web page from an internet service provider
They download a web page from the Internet including the pictures and save it onto their server, replacing the log in and password boxes with a form that collects the information and passes it on to them.
Always notify the Internet police about this
Our site does not have automated password retrieval, all our log ins are manually created, password retrieval is made manually and of course this may cause inconvenience by having to wait for a lost password, but its very unlikely that anyone will have a chance to get hold of your details through us.
We would however advise you to keep a strict policy on saving your log ins to our restricted areas to your computer via cookie. If you share your computer with anyone else, please remove cookies from your computer. The automated cookie removal procedure does not always completely remove cookies, so the best way to remove cookies is by searching your computer's hard drive for cookie files and deleting them.
Our main site URLs start with http://www.whizz.uk.com
our cgi pages have an URL like http://cgi.www.whizz.uk.com
our list of associated sites can be found here If you are not certain please call before you complete a form online.
|
