1. Email phishing: more sophisticated than ever
Phishing e-mails now look almost identical to official communications. In 2023, cybercriminals are particularly targeting financial services, e-commerce sites and even social networks. Here are a few recent examples of phishing:
- Fake emails from banks or credit cards: These emails warn of suspicious activity or account suspension and ask you to click on a link to verify the information. The link redirects to a bogus site that records the data entered.
- Delivery scams: You receive an email reporting a delivery problem requesting payment information to resend the package. These scams target users who expect deliveries, especially during the holiday season..
- Phishing based on teleworking platforms: With the increase in teleworking, emails spoofing platforms like Microsoft Teams or Slack appear. They ask users to log in again to avoid account deactivation, which leads to data theft.
🛡️ Tips to avoid phishing emails :
- Never click on suspicious links, and go directly to the company's official website by opening a new window.
- Check the sender's email address: A strange or incorrect address is a sign of phishing.
- Activate two-factor authentication (2FA) to secure your accounts.
2. SMS smishing: the rise of mobile scams
Scams by SMS, or smishing, are now targeting mobile users, posing as delivery services, telephone operators or even government institutions. Fraudulent SMS messages often include a shortened link, inviting quick action. Here are some recent examples of smishing:
- Fake delivery scams: “Your package cannot be delivered, please reschedule delivery.” This message tricks users into clicking on a link to pay a fee or confirm their address, capturing their information in the process.
- False messages from telephone operators: SMS messages claiming to be from your operator indicate changes to your package or pending payments, inviting you to click on a link.
- Smishing for tax or social security refunds: These messages, purporting to be sent by the tax authorities or social security organizations, direct you to bogus sites requesting banking information.
🛡️ Tips to avoid smishing :
- Don't click on the links in suspicious SMS messages, and check the information on the company's official website.
- Never share your personal information by SMS.
- Use a suspicious call and SMS blocking application to detect fraudulent numbers.
3. Evolution of phishing techniques in 2024
Cybercriminals use social psychology andartificial intelligence tactics to make their messages more persuasive. Emails and SMS messages are now personalized, featuring the victim's name or purchase history, making the scam more credible. In addition, more and more phishing campaigns use dynamic phishing websites, which adapt their appearance to the user for maximum realism.
Stay vigilant and protect your information
Phishing and smishing attacks become more sophisticated every year, but with a few good practices, you can avoid falling into the trap. Stay alert for unusual messages, always check the origin of communications, and adopt security measures such as two-factor authentication.
With Saferbuy, trust secure sites for risk-free online shopping!