How to detect email phishing scams – Google,Yahoo,Outlook

Email phishing scams is one of the most common way for any hacker to stole your credentials. Most phishing scams are not very hard to detect, but in some cases we’ve seen that a clever hacker can bypass the security algorithm and tricks you into surrendering your details.

Mostly Hacker (attacker) creates an email address, which helps him to seem your legitimate friend or someone you know. Mostly these emails carries a PDF attached file with them which can be converted with sodapdf, this will open a new window when you try to open it. The new sign-in fake page will send your data directly to the attacker and compromise your email account.

How to protect yourself

When you are using any sign-in service (eg: Google, Yahoo,Outlook etc,.) always check the browser location bar atleast and verify the hostname and protocol. This precaution will eliminate every chance of you becoming a victim of phishing activity.

The availability of IPv4 addresses is becoming scarcer, and many experts have predicted that IPv4 addresses will start running out as early as December 2011. In the three decade plus history of the Internet, the adoption of IPv6 will be the largest single change in internet technology. While much of the current focus on the migration to IPv6 is around the intricacies of making external facing websites and services (e.g. DNS) work cleanly in a hybrid world, as well as the use of IP addresses to interconnect distributed server, storage and network elements, organizations need to also be thinking about internal controls, management systems and frameworks as part of the transition. Every company can use additional funds for infrastructure upgrades, additional employees or just to assist add revenue to rock bottom line. the matter is, where does one find the additional capital without putting much effort into it? the solution is to unused sell IPv4 space, while it still has such a high demand and market price! If your’e organization was fortunate enough to receive an outsized block of IPv4 address space within the youth of the web , likelihood is that you never knew it might have price. While some organizations actually use their IPv4 blocks, a majority either don’t use their IPv4 or are often more efficient with their IPv4 addressing scheme. Brander Group features a full service to assist organizations identify their IPv4 addresses, re-address the IPv4 to more efficient usage, properly quantify the IPs price, and safely sell IPv4 on the secondary market. Our team assist you each step of the way of this typically cumbersome journey. we offer guidance and support with ARIN, RIPE and APNIC to make sure the IPv4 is in a position to be sold without issue. We then run each IPv4 blocks block through our blacklist software to make sure they’re clean. If any IPv4 is blacklisted, we offer an in depth report with helpful links for quick removal. Once you’re able to sell IPv4 space, we offer the framework and contracts to form this a legal and smooth process. Finally we match you with a totally qualified buyer, who is looking to get your IPv4 blocks within 30 days. Here you can find the details about how to sell ipv4 addresses to Brander Group.

A number of organizations worldwide are putting detailed plans in place to complete the migration in the next 1-2 years, and through the first half of 2011, the activity and awareness around IPv6 technology has increased significantly. On June 8th, hundreds of governmental organizations, enterprises and service providers participated in a 24-hour, large-scale “trial” of IPv6 technology. The event was coined as World IPv6 Day, and was organized by the Internet Society. The purpose of the event was to educate, energize and motivate organizations across the IT and communications industry to prepare their services for IPv6 to enable a successful migration as IPv4 addresses begin running out.

A key aspect of transitioning to IPv6 technology involves ensuring that the right IT, cloud and network monitoring software systems are in place to assure the performance of complex networks, data centers and cloud infrastructures. For distributed organizations, where services may be tied to partner or remote IT infrastructure, the preparation to deal with a hybrid IPv4 and IPv6 world has to be done much more proactively. In some cases, the IT services being managed by an IT group in one department may link to data center components and applications of other departments, which could be using different IP versions. If the IT organization is on the hook to deliver against agreed to SLAs or performance levels to users and business constituents, then it needs to have visibility into the health and performance of the broader IT infrastructure that is part of its scope of coverage.

It is time to start taking steps to trial and implement network and IT monitoring software systems that can seamlessly monitor IPv6 and IPv4 applications, servers and network devices in a hybrid environment. Given that hybrid environments will coexist for a while, these monitoring solutions will enable organizations to uniformly discover and provision IPv6 devices, and collect and analyze performance data, all within one integrated system that supports IPv4 devices as well. Users can ignore the intricacies of managing different types of devices, and are able to benefit from a unified management and operational view of their entire IT infrastructure. Being able to capture performance metrics from the full IT and cloud infrastructure, and then correlating the data and linking this to supported business services is critical to ensure the effective delivery of services and assure business operations in the new dynamic environment. These systems address this need by providing a service-oriented, end-to-end, performance view, whether IPv6 based or otherwise.

Although your organization may be taking preliminary steps towards implementing IPv6 compatible infrastructure, being prepared in advance by having the management tools in place will ease the process as you make the transition from an all IPv4 to a hybrid to a fully converted environment.

 

dataURI

 

 

The above image shows a phishing activity when a user opens an suspicious PDF file. It opens a Google sign-in page with the above Chrome browser tab location. data:text/html, shows that this isn’t an official google log-in page. This means that this isn’t a secure page and some attacker is trying to steal your credentials.

GMail-phishing-secure-accounts.google.com-data-uri
Pic-2

Pic -2: shows the secure browser location of a Google sign-in page. Anything before accounts.google.com instead of Https:// means that the page isn’t secure and user should immediately close the browser tabs.

Everyday there’re many new phishing scam techniques attackers are developing to trick people. But, if a user uses above mention precautions he can never be a victim of phishing scam.

Leave a Reply

Your email address will not be published. Required fields are marked *