Don’t be fooled: these are the tricks that phishing uses to obtain your data | Common Phishing Attacks

Posted on by

Phishing is one of the techniques most used by cybercriminals to seize user credentials, bank details or any other type that can be obtained by anyone who uses the Internet .

We show you some of the tricks that phishing uses to trick users and  thus steal their personal data by making them believe that they are on a legitimate and safe page. But we advance that  the most effective way to avoid them is to have an updated anti-phishing security solution installed on your computer .

Although many of the baits used by phishing attacks are really crude and it is obvious that it is a scam, their techniques have improved a lot in recent years and have been refined to the point where it is difficult to tell the difference between the real thing and the counterfeit . Don’t be fooled! These are the tricks that phishing uses to obtain your data.

An attractive bait to attract attention

Phishing uses social engineering by trying to  manipulate the user into giving cybercriminals the information they need.

To do this, cybercriminals often use bait to attract the attention and curiosity of  anyone who uses the Internet . One of the most used methods is to simulate a problem with the payment of some service that the user could have contracted.

For this reason, phishers , the name by which cybercriminals who use these phishing techniques to obtain user data are known, use emails that impersonate the identity of such popular services as Netflix, Apple, Amazon, PayPal, banks, etc. electric or telephone companies or postal delivery agencies.

The common denominator of all these fraudulent emails is to communicate a problem with the credit card, with the payment of an invoice or with the receipt of an alleged shipment that, of course, you do not expect.

Social networks and even SMS messages are also common attack vectors for phishing. Most of them are done through links that will take you to a specific page where, under the pretext of accessing a gift, a prize, a contest or any other excuse, they will try to steal your user data and password for services legitimate ones like Facebook, YouTube, Gmail , etc.

Phishing Emails

Traditionally, phishing emails were not characterized by being too meticulous when it came to simulating legitimate emails that the user could receive from the services we have mentioned.

It is enough to pay attention to the spelling of the message to detect errors with the accents or with the ñ. These failures are so common because cybercriminals translate messages “in bulk” and do not pay attention to the special encoding of certain characters typical of Spanish, so where there should be a vowel with an accent or ñ, the word shows a series of characters strangers. Cervantes has won the first battle against them.