SECURITY experts have highlighted five warning signs to look out for when answering the phone, reading texts, or checking your email.
Whether you’re using an Android or iPhone device, some social engineering attacks are difficult to avoid. However, if you catch the signs early, you can protect your money.
Five examples of common social engineering scams were highlighted in a recent Kaspersky blog post.
The first is a tech support scam, which is a classic social engineering attack.
According to a post by Alanna Titterington, a security researcher at Kaspersky, this attack often involves a scammer calling or texting you over the weekend.
A criminal calls and claims there is a problem at your workplace and offers to fix it.
Titterington explains: “Not many people want to be in the office on a weekend, so the tech support rep “reluctantly” agrees to break company protocol “once” and resolve the issue remotely.
“But to do that, they need the employee’s credentials. You can imagine the rest.”
The next scam on the list involves authentication requests.
If you receive spam authentication requests or a call asking for confirmation, it is best to avoid doing so.
Most read in “Phones and Gadgets”.
Confirmation can give a hacker access to important information that is designed to protect you.
The next scam on the list involves a fake CEO.
Titterington explains, “The idea is to somehow initiate correspondence with company employees who typically pose as managers or key business partners.”
“Usually, the purpose of the correspondence is to trick the victim into transferring money to an account provided by the scammers.”
This attack is an example of a Business Email Compromise (BEC).
Another common BEC attack is known as conversation hijacking.
A hacker steals real correspondence and information and uses it to gain your trust.
The fifth and final social engineering scam on the Kaspersky list is fake law enforcement claims.
If you receive a message or call from someone impersonating the police asking you to send money, ignore the request.
Some cyber criminals even hack email accounts owned by law enforcement agencies.
If you’re sure an email or text message you’ve received is a scam, report it and delete it.
If the call is fraudulent, your best bet is to hang up and block the number.