Here’s an example of something I got today:
This is the best phishing message I’ve seen so far.
The spelling and grammar is pretty spot on except for a couple of areas. I won’t point out the spelling mistake, but it’s pretty obvious.
I know it cannot be legitimate only because I don’t bank with this particular bank, and I also never use this email address that I use for blogging for anything in my personal life.
So what can you do to protect yourself?
Other than the normal don’t give out your email, or send bank information over unsecure channels, here’s a simple way:
If you ever feel that what you receive is a LEGITIMATE message from Paypal or your bank, they always tell you to type the bank’s URL directly into the browser instead of clicking on any links in the emails.
You’d be surprised at how well this email is done. The lingo sounds accurate as Scotia Bank does call their email center a “Communications Centre”, and the email address looks legitimate enough to fool someone who isn’t familiar with the way Scotia Bank emails you.
By the way they actually don’t email you to tell you that you have a message in your centre. They have their own email messages inbox when you sign in and it tells you right on the page.
The only time Scotia Bank (or most other banks) emails you is to send you information about some articles they want you to read or they tell you to type the site URL in your browser and log on.
That way, you can be sure that you’re going to the actual site that the email claims they’re from, and you won’t be sent anywhere else.