Provided by Joseph V. Curatolo
Imagine that you receive an email with an urgent message asking you to verify your banking information by clicking on a link. Or maybe you get an enticing text message claiming that you’ve won a free vacation to the destination of your choice — all you have to do is click on the link you were sent. In both scenarios, clicking on the link causes you to play right into the hands of a cybercriminal seeking your sensitive information. Just like that, you’re at risk for identity theft because you were tricked by a social engineering scam.
Social engineering attacks are a form of digital deception in which cybercriminals psychologically manipulate victims into divulging sensitive information. Cybercriminals “engineer” believable scenarios designed to evoke an emotional response (curiosity, fear, empathy or excitement) from their targets. As a result, people often react without thinking first due to curiosity or concern over the message that was sent. Since social engineering attacks appear in many forms and appeal to a variety of emotions, they can be especially difficult to identify.
Take steps to protect yourself from a social engineering scam. If you receive a message conveying a sense of urgency, slow down and read it carefully before reacting. Don’t click on suspicious or unfamiliar links in emails, text messages, and instant messaging services. Hover your cursor over a link before clicking on it to see if it will bring you to a real URL. Don’t forget to check the spelling of URLs — any mistakes indicate a scam website. Also be sure to look for the secure lock symbol and the letters https: in the address bar of your Internet browser. These are signs that you’re navigating to a legitimate website.
Never download email attachments unless you can verify that the sender is legitimate. Similarly, don’t send money to charities or organizations that request help unless you can follow up directly with the charitable group.
Be wary of unsolicited messages. If you get an email or a text that asks you for financial information or passwords, do not reply — delete it. Remember that social engineering scams can also be used over the phone. Use healthy skepticism when you receive calls that demand money or request sensitive information. Always be vigilant and think before acting.
Joseph V. Curatolo is president of Georgetown Capital Group, 5350 Main St., Williamsville (phone: 633-9800, toll-free 1 (800) 648-8091, fax 633-9789, www.georgetowncapital.com).
Insurance services offered by Georgetown Capital Group, which is independent of Royal Alliance Associates, Inc., with separate ownership, and is not registered as a broker-dealer or investment advisor.
This message may contain confidential information and is intended for use only by the addressee(s) named on this transmission.
Broadridge Investor Communication Solutions, Inc. does not provide investment, tax, or legal advice. The information presented here is not specific to any individual’s personal circumstances.
To the extent that this material concerns tax matters, it is not intended or written to be used, and cannot be used, by a taxpayer for the purpose of avoiding penalties that may be imposed by law. Each taxpayer should seek independent advice from a tax professional based on his or her individual circumstances.
These materials are provided for general information and educational purposes based upon publicly available information from sources believed to be reliable — we cannot assure the accuracy or completeness of these materials. The information in these materials may change at any time and without notice.
This communication is strictly intended for individuals residing in the state(s) of AL, AZ, AR, CA, CO, CT, DE, FL, GA, IL, IN, IA, KS, KY, LA, ME, MD, MA, MI, MN, MO, NV, NH, NJ, NY, NC, OH, OR, PA, SC, SD, TX, VA, WA and WI. No offers may be made or accepted from any resident outside the specific states referenced.
Prepared by Broadridge Investor Communication Solutions, Inc. Copyright 2018.