Last updated on July 20, 2024

Be a tough target

Information shared by you can be misused by cybercriminals. Take the following steps to avoid phishing and be a tough target.

• Cybercriminals use public information to send deceptive emails or messages. Take a look at your privacy settings in social media accounts and think before you post.

• Be concerned about what your social media friend circle shares about you, such as information and photos you are tagged in.

• If you have received a suspicious email at the office, forward it to the IT department which handles such queries.

Oops, Already clicked! What now???

        • • First of all, don’t panic; there are certain actions you can take
        • • Open your antivirus software and do a full scan and follow the instructions provided by the software.

• If your password has been compromised in one account, and you have used the same password for other accounts, immediately change the passwords for all other accounts.

• If you have lost money by any chance due to an online scam, report it to

Computer Crime Investigation Division (CCID) of Criminal Investigation Department (CID)
Phone: 011 238 1045
Email: dir.ccid@police.gov.lk

Spotting a phishing email

Noticing a phishing email is somewhat tricky and even the most careful users can get trapped.

• Check the name: Is it addressed to you or does it say ‘valued customer’, ‘friend’ or ‘colleague’? This implies that the sender actually doesn’t know you and could be attempting to phish you

• Cybercriminals may create official-looking emails by including similar logos, therefore be vigilant about the logos and if you have a doubt visit the official website to verify.

• Look out for words/phrases that require immediate action, such as “click the link before it expires” or “send the requested details immediately”.

• Check sender’s email address and name carefully. Does it look legitimate or is someone trying to impersonate?

• Your bank will never ask for sensitive personal information via email. If you receive such a request call the bank directly.

 

 

Refer to Phishing

Source: National Cyber Security Center – https://www.ncsc.gov.uk/