# What Is Phishing?

## Метаданные

- **Канал:** PowerCert Animated Videos
- **YouTube:** https://www.youtube.com/watch?v=9JD7E4-ITvM

## Содержание

### [0:00](https://www.youtube.com/watch?v=9JD7E4-ITvM) Segment 1 (00:00 - 05:00)

What is fishing? So that is the topic of this video. Now fishing is a very common type of internet fraud in which criminals try to fool people into giving up private information such as credit card numbers, passwords, or other personal information by posing as a legitimate company or person. And a lot of times this happens through things such as emails, chat services, websites, and so on. So for example, when a criminal wants to steal someone's personal information using a fishing attack, one of the tactics that they will use is that they will send the victim an email. And this email will contain something urgent such as informing the victim that their data or account has been compromised and they need to take immediate action. And in this email, they will have a link informing the victim to click on that link and log into their account and fix the problem. But the trick is the link is fake and it takes them to a fraudulent website. It's a website that may look legitimate just like a real business website, but it's not. It's a website that is designed to fool the victim to steal their personal information. So when that person clicks the link, it takes them to a fake website thinking that the website is legitimate and they will log into that website using their username and password. And then the criminal because it's his website will steal their information and use their credentials to log into the real website and steal their personal information such as their name, address, credit card numbers, or maybe even their funds. And another fishing method that a criminal may use is by a phone call. And this is known as fishing. Vishing happens when a hacker calls someone to steal their personal information or to get their money. Now, this has happened numerous times to my customers when they would call me to fix their computers after a vishing attack. They explained to me that they received a phone call from someone who claimed that they were tech support from a legitimate company such as Microsoft and then they were told by this individual that their computer has a virus and that their computer is transmitting that virus out on the internet. So what happens is that the criminal will ask the victim if they can remote log in and control their computer to remove the virus and then when they are given access, they can access personal files on the victim's computer. And in addition, the criminal will sometimes install a virus on the computer without the victim knowing it. And then they will inform the victim that in order to remove the virus that they just installed on their computer, they will try to convince the victim to pay them $200 to remove the virus. And a lot of times they will fall for it and lose their money. And there are also other types of fishing such as smishing. Smishing is fishing by using text messages. A criminal will try to bait and steal information by texting someone on their phone. And there is also whailing. Whailing is when a fishing attack is aimed to a highlevel person such as the owner or CEO of a company. And then there's spear fishing. Spearishing is when a single victim or group is focused on instead of the general public. So the next question is, well, how do you protect yourself against a fishing attack? Well, one way is to always be skeptical. Most, if not all, fishing attacks will try to trigger your emotions by creating a sense of urgency and directing you to take immediate action on something. But legitimate companies will rarely put pressure on you to act in an urgent matter. And another way is to avoid clicking on links, especially if you suspect something malicious about the message you received. A good way to check the link is to don't click on it, but instead just hover your mouse cursor over the link and then you will see the actual URL website from the link. And if the domain name of the website looks like it's from a legitimate source, then it's probably okay to click on that link. But if the domain name looks unfamiliar to you, then don't click on the link. Another way is to use MFA or multiffactor authentication. Now, this is a safeguard if someone by chance already has your credentials. MFA provides an extra layer of security that asks the users to prove their identity

### [5:00](https://www.youtube.com/watch?v=9JD7E4-ITvM&t=300s) Segment 2 (05:00 - 07:00)

before they can access a resource or account. So it makes it harder for criminals to get into accounts. So for example, after you log into a website with your username and password, you can set up MFA to send a prompt on your mobile phone verifying if this is actually you logging into your account. And another way to protect yourself is to get as much of your personal information off the internet as possible because cyber criminals can use your personal information against you. And this information is accessible because of data brokers who profit by selling your personal information to robocallers, telemarketers, spammers, and anyone else who wants to learn more about you. So this is why I personally use Aura. So, here is my personal phone and I want to show you something here. So, let me open up the Aura app and let's take a look. So, as you can see in the activity feed, Aura is automatically and constantly working to get my personal information off these data broker sites. So, for example, here Aura has sent a request to erase my data off a site called Resonate. And then it did a second removal request off a site called DEMST and another second removal request from a site called ERO direct and then a few other sites. And it also informed me that my credit score decreased in November. And then it sent a bunch of removal requests to more data broker sites. So this is what these sites do. They collect your personal information without your consent and then they sell them to businesses or to anyone who wants to know more information about you. But Aura quickly goes to work for you to remove your personal information from the internet. And it'll also alert you within minutes if your credit file has been compromised. And in addition to protecting your identity or also protects your devices, the app has an antivirus, password manager, parental controls, and a fast VPN so you can surf the internet safely and anonymously. So guys, if you're interested in protecting your identity and getting your personal information off the internet, you can try Aura for two weeks absolutely free by clicking my link in the description below or just scan the QR code on the screen. And during those two weeks, you can see for yourself how much of your personal information is out on the internet.

---
*Источник: https://ekstraktznaniy.ru/video/30216*