While today’s date signifies a day to play pranks on one another, a number of website operators will not be looking on April 1st with much pleasure.
In a decidedly non-prank move, yesterday, Microsoft announced they would be filing 117 lawsuits against a number of phishing-attack websites. Phishing attacks are attempts by malicious users to steal personal identity information by means of misleading emails, fake sites, and pop-ups, to name a few of the methods. These false web properties attempt to fool unsuspecting people to enter personal data, which is then captured and used for a number of identity-damaging acts.
Microsoft has been hot on the trail of phishers and spammers since the New Year began, and this current move indicates they are practicing a “take no prisoners” approach. Aaron Kornblum, Internet Safety Enforcement attorney at Microsoft, had these comments:
“The Internet has revolutionized the way we communicate, transact business and educate ourselves. We must work together to stop these con artists from misusing the Internet as a tool for fraud. Microsoft provides consumers with the information and technology that will help protect all of us from this pervasive and destructive threat, and has filed legal action today against some of these individuals.”
Through these lawsuits, Microsoft hopes to establish connections between phishing scams worldwide and uncover the largest-volume operators. Microsoft also offers some tips for those of you unsure how to protect yourselves from phishing attempts:
Be suspicious if someone contacts you unexpectedly and asks for your personal information.
It’s hard to tell whether something is legitimate by looking at an e-mail or a Web site, or talking to someone on the phone. But if you’re contacted out of the blue and asked for your personal information, it’s a warning sign that something is “phishy.” Most legitimate companies and agencies don’t operate that way.
Don’t click on a link in an e-mail message that asks for your personal information.
It may take you to a phony Web site that looks just like the Web site of the real company or government agency. Following the instructions, you enter your personal information on the Web site – and into the hands of identity thieves. To check whether the message is really from the company or agency, call it directly or go to the company’s Web site. If you don’t have the telephone number, get it from the phone book, the Internet or directory assistance. Use a search engine to find the official Web site.
If someone contacts you and says you’ve been a victim of fraud, verify the person’s identity before you provide any personal information.
Legitimate credit card issuers and other companies may contact you if there is an unusual pattern indicating that someone else might be using one of your accounts. But usually they only ask if you made particular transactions; they don’t request your account number or other personal information. Law enforcement agencies might also contact you if you’ve been the victim of fraud. To be on the safe side, ask for the person’s name, the name of the agency or company, the telephone number, and the address. Then get the main number (see tip above) and call to find out if the person is legitimate.
Microsoft is filing these lawsuits today in the U.S. District Court for the Western District of Washington in Seattle.
Chris Richardson is a search engine writer and editor for murdok. Visit murdok for the latest search news.
