Social engineering exploits human psychology, and is a form of manipulation used by criminals to gain personal or confidential information from an unsuspecting victim. Criminals know that the weakest link in the security chain is a human and will pose as technical support engineer, or bank staff, and will exploit the victim’s inclination to trust. The victim then willingly divulges any information requested by the criminal. In other cases, victims are guided by the criminal, purporting to be a technical support engineer requested to follow several steps to “fix” something on their computer. The victim then unwittingly installs malware, which sends their personal or confidential information back to the criminal.
- Keep your software up to date, using the latest security patches available.
- Ensure that you have the latest anti-virus software applications installed on your computer.
- Do not give control of your computer to a third party who call you unexpectedly.
- Do not rely on call line identification (CID) alone to authenticate a caller. Criminals spoof CID numbers. They may appear to be calling from a legitimate company or a local number, even when they’re not in the same country as you.
- Never provide your password, credit card or other financial information to someone who calls and claims to be from tech support.
- If you’re concerned about your computer, call a reputed security software company directly and ask for help.
- Never respond to emails appearing to be from your bank that request your personal details. No bank will ever ask you to confirm or update your account details via email
- Do not click on links or icons on unsolicited email.
- Never provide your online ID, password or PIN to anyone.
- Change your PIN and passwords frequently.
- Place sensible transaction limits on your accounts.