What Phishing is
With Phishing an attacker tries to get personal data by faking websites, e-mails or short messages to an Internet user. Generally, a phishing attack begins with a personally and official-looking e-mail or bulk mailing of e-mails. The receiver should visit a fraudulent website that looks deceptively real and requests the user to enter his login information. If he follows this prompt, his credentials end up in the hands of the author of the phishing attack.
How to protect yourself
In order to protect yourself from phishing you do the following:
- Never enter passwords, account information, etc. after opening a link in an e-mail.
- Open the website of the Institute listed in the e-mail directly and only enter your data there.
- Banks and other institutions will never ask for your password or PIN.
An example of a phishing attack
Example using a "Sparkassen-Mail" (german only):