Phishers and Scammers are Getting Smarter…Are You?

Posted on July 25, 2012 by Kris Scheetz

Most of us have heard of the term phishing and have probably been attacked by it more than once. Phishing is attempting to acquire information from users while posing as a trustworthy individual in an electronic communication. “Phishing” generally refers to attacks in your email inbox, but there are three others to know of: vishing, smishing, and whaling.

“Vishing” is a phishing attack on your VoIP (voice over IP) phone. If you don’t have a VoIP phone then you are not at risk, as land lines are not susceptible to this kind of attack. Like phising, a message sent to a thousand possible emails, vishing is sent to a thousand possible VoIP phones. Vishing happens when victims receive voice messages asking to contact their bank about fraudulent bank account activity. The attack is successful when users call the number and are then prompted by voice commands to enter personal information, or they are connected with someone appearing to be a bank representative. Providing information can then lead to stolen credit card numbers, or full-on identity theft.

“Smishing” is a phishing attack on your mobile phone via text messaging or Short Message Service (SMS) messaging. Same concept as above, text messages are sent to your phone asking you to go to a website or call a number where you are met by someone attempting to steal your personal and critical information.

Finally, “whaling” is a specified attack on senior business leaders. These attacks are more specific, as scammers are doing their homework and compiling business email addresses, job titles, direct telephone numbers, and reporting employee names of business executives and compiling direct attacks over email. Executives are prone to fall to these attacks as the information in the emails leads them to believe the messages are legit. The email message may contain and attachment or point executives to a website, where once clicked, a program is downloaded to the user’s PC and confidential information is then compromised. This attack is a little different as the scammers are not only interested in obtaining personal information on the user, but are also after confidential and proprietary information of the company.

A lot of successful phishing attacks go unreported because the victims don’t want to appear gullible enough to be stooped by these attacks. Sometimes we throw logic reason out the door and fall, even though we think we are too smart to do so. Continue to delete the emails, but also remember to delete the voicemails and the text messages. And remember, if you have a small suspicion that something isn’t right, it probably isn’t!

EarthLink IT Services offers numerous security services to protect against these attacks. Check out our security service product suite HERE!

Where Is Your Laptop?

Posted on May 25, 2012 by Kris Scheetz

Laptop theft is a common practice. Every day laptops disappear from college libraries, car back seats, coffee shop tables, hotel lobbies and airport waiting areas. In the past, laptops were valuable for their hardware, once stolen they were resold quickly for strictly their monetary value. Today that’s not the case. Your data is the target! There’s probably something on your laptop that you don’t want the whole world to see. It could be proprietary information, documents containing personally identifiable information (birth date, social security number, credit card info) or even someone else’s personal information.

If you travel with your laptop or keep it in a place where others can access it, then you’re vulnerable to theft. A password no longer guarantees denied access to your data. If someone is smart and determined enough they will crack it and have unrestricted access to every piece of data stored on your laptop. So how do you protect it? Encryption. Encryption adds an additional layer of protection. If your password is cracked the data remains encrypted and the information is scrambled so that even advanced security experts can’t read it.

EarthLink provides a Managed Laptop Security solution that encrypts your data and also adds yet another layer of protection with laptop remote wipe capabilities. Should your laptop be lost or stolen, EarthLink’s protection will automatically kick in and wipe (delete) the data by overwriting it until nothing is left.

Passwords simply don’t cut it anymore in today’s technology world. If you laptop is mobile then you must add multiple layers of data protection to minimize the risk of your data getting into the wrong hands. Contact EarthLink Managed Security Services (or download this info sheet) today to learn more!

The Epsilon Breach and How It May Affect You

Posted on April 6, 2011 by David Silva

Advertising firm Epsilon recently was the victim of a cyber attack. The company has reported that their mailing lists may have been compromised in this attack. Meaning criminals may now have access to millions of personal email addresses and what companies they do business with. Continue reading →

Identity Theft and the Internet

Posted on December 30, 2009 by Pete Chronis

What is Identity Theft?
Identity theft starts when someone uses your personal information to commit a crime without your knowledge. Personal information like your name, social security number and credit card number is very valuable to criminals. Often, identity theft goes undetected, is hard to investigate and can occur far from the victim’s home. The Federal Trade Commission estimates that as many as 9 million Americans have their identities stolen each year. Thieves often use the stolen information to obtain fraudulent credit cards, create fraudulent documentation like driver’s licenses, obtain an bank account in your name or obtain a loan in your name. Often victims are not responsible for these fraudulent accounts, but, resolving these issues is a time consuming and often frustrating experience.
They key to reduce your risk from identity theft is education and prevention.

Continue reading →