[Libs-Or] Tech-Talk: INTERNET - Phishing: How to Stay Safe

Darci Hanning darci.hanning at state.or.us
Tue Nov 14 15:09:09 PST 2017


Greetings!

The Tech-Talk e-newsletter for Oregon library workers is distributed weekly via the Libs-OR and TechTalk mailing lists. Please do not forward.

Know someone who might be interested in receiving a copy but they’re not on Libs-OR? Have them contact darci.hanning at state.or.us<mailto:darci.hanning at state.or.us> or visit http://listsmart.osl.state.or.us/mailman/listinfo/techtalk to subscribe just to the newsletter!

This paid subscription service is supported in whole by the Institute of Museum and Library Services (IMLS) through the Library Services and Technology Act (LSTA), administered by the State Library of Oregon. Enjoy!


[http://files.constantcontact.com/ee1208b4001/34916cb2-412f-43fa-8294-1f7ecb0e9a3d.png]



 Want to share Tech-Talk? Ask first. Contact info at Tech-Talk.com<mailto:info at tech-talk.com> © 2017 Shared Results International



Brought to you by the State Library of Oregon





[State of Oregon]





The State Library is pleased to provide you with Tech-Talk.com. We encourage you to make the most of this skill-building membership site at www.Tech-Talk.com<http://r20.rs6.net/tn.jsp?f=0019Vdkvi2YDkR7c6nuNrLSl3JP5YQ2poinU_Sa_X4tGw3k7_7ZhXYUgDu7FYQ71WRxAUumcM7DdnTjAN7BvHb4TAVTzkahRWdUCuHRk1NZe5Y2bUL76S6EcJG9YqxNrxw6RXlq3XHbzUyagWvay4_JnQ==&c=nP0yhvvnrE9I4C-DHFLjniGpKfONSyWoUM5bEfeunTmejMGdH1945w==&ch=4NgD5SVIubRXZsfs0h6_jdQpSCRO1dQvA29adlbgk-BVdlndCXMN5w==>.

Username: ORLIBTECH
Password: ORLIBTECH (case sensitive)

Contact Darci Hanning at darci.hanning at state.or.us<mailto:darci.hanning at state.or.us> if you have questions.









[Phishing]<http://r20.rs6.net/tn.jsp?f=0019Vdkvi2YDkR7c6nuNrLSl3JP5YQ2poinU_Sa_X4tGw3k7_7ZhXYUgDEGDpZUT5-Jj3qXqq1-nXuoeU0jv-aJE1c9Kr5Sob4cqJ0upuhUMsLGs4rgAevs_D8C5idFFqV1kMlyiwx32dYD_w1NaI9BT0laPgGs8eWPu9UFJSDjSB7s5dcO1IFzYPMk0wh3hKLK8tovzH4ytvQ=&c=nP0yhvvnrE9I4C-DHFLjniGpKfONSyWoUM5bEfeunTmejMGdH1945w==&ch=4NgD5SVIubRXZsfs0h6_jdQpSCRO1dQvA29adlbgk-BVdlndCXMN5w==>



 This Week's Tech-Talk: INTERNET

1. VIDEO ... Phishing - How to Stay Safe
2. ARTICLE ...  Phishing - How to Stay Safe
3. COMMUNICATING ... Repeat First

NOTE: To view the VIDEO, click here<http://r20.rs6.net/tn.jsp?f=0019Vdkvi2YDkR7c6nuNrLSl3JP5YQ2poinU_Sa_X4tGw3k7_7ZhXYUgDEGDpZUT5-Jj3qXqq1-nXuoeU0jv-aJE1c9Kr5Sob4cqJ0upuhUMsLGs4rgAevs_D8C5idFFqV1kMlyiwx32dYD_w1NaI9BT0laPgGs8eWPu9UFJSDjSB7s5dcO1IFzYPMk0wh3hKLK8tovzH4ytvQ=&c=nP0yhvvnrE9I4C-DHFLjniGpKfONSyWoUM5bEfeunTmejMGdH1945w==&ch=4NgD5SVIubRXZsfs0h6_jdQpSCRO1dQvA29adlbgk-BVdlndCXMN5w==>. Enter the User Name and Password!









INTERNET - Phishing - How to Stay Safe
Intermediate



I recently received an email from "eBay" that I thought could have been a scam… but it was very convincing.

The name of the company was in the email address and the logo was at the top. It looked like any other legitimate email that I've received from eBay. However, that little voice inside my head said, "Something's not right."



[Phishing example]



When you get something that looks "fishy" ... it may be "phishing". The question is, how do you know?

Let's take a look at what "Phishing" means in the tech industry. It refers to sending you email messages, asking you to go to a website and calling you on the phone to gather sensitive information and / or put malicious code on your computer… in an attempt, eventually to steal money from you. Yikes!

So let's take a look at some details that can clue you into a scam, as well as what to do if you've been targeted.









How to Identify a Phishing Scam



In Email or a Text Message…

When you receive an email that you question, here are a few red flag items to consider:

·     It appears to be from a well-known company like Facebook, PayPal, Dell, etc..

·     There can be spelling errors.

·     It contains threats like, "Change your password now or your account may be suspended," or "Log into your account to update your information or you may be permanently blocked." (See highlighted example in the email image above.)

·     There are links in the email that they want you to click on. The link may look "real" but if you mouse over it (without clicking on it) you can reveal the actual web address.



[Phishing link]



In a Phone Call…

You've probably heard about these calls (or may have even received one)…





[phishing phone call]





·     They claim to be from the IRS and try to threaten you into giving them credit card information so that you can avoid penalties. Know that it's standard policy that the IRS will notify you by letter if there is an issue with your account.

·     The caller may say they are from a major computer or security company telling you that your computer has been compromised and they can help you download software to fix it. Be aware that companies like Microsoft and Apple state on their website they do not engage in cold call selling of "computer fixes."

·     They tell you that you've won a prize or vacation and all you have to so is pay the taxes….

·     Sadly there are scams that identify themselves with a "fake" charity (like your local police or fire department) and appeal to your sense of giving.

·     They try to direct you to a website to update your password or put in credit card information.

·     The caller may pretend to be a family member, friend or friend of a family member requesting immediate cash due to an "emergency."









What Should You Do if You Suspect Phishing?



If You Receive an Email that Looks Suspicious:

·     Don't ever click on any links in the message. So, if it's from a company where you actually have an account, as in our example with eBay, log into your account from their website directly. Most likely if there's a real issue, you'll see a notification in your account messages. Or call the company directly and inquire about the content of the email.

·     You can do a little bit of research to look for evidence that this is phishing. Do a Google search by typing in the main message or subject line of the email. The results may show that other people have received this same type of email. Look for articles about phishing connected to that company name. Often on an organization's website they will show examples of these scams and what you should do.



[Phishing email scam]



·     Report the email to the company from which it supposedly came. These large organizations have cyber security departments that want to be made aware of these types of emails.

·     Forward the email to your IT department if that is your organization's policy.









If You Receive a Questionable Phone Call:

·     Screen unrecognizable phone numbers and simply don't answer them.

·     Hang up immediately if you think the call is suspicious.

·     If it is obviously a phishing call and you want to report it, write down the phone number and file a complaint with the Federal Trade Commission. https://www.ftccomplaintassistant.gov/#crnt&panel1-1<http://r20.rs6.net/tn.jsp?f=0019Vdkvi2YDkR7c6nuNrLSl3JP5YQ2poinU_Sa_X4tGw3k7_7ZhXYUgDEGDpZUT5-JcKsVWqS7s_CPY6z3vvb-hF4veSOMq5zdz6VJlwacYTY5y47GV7R2zv-pHj--bLKT2wmDpHZe6-IRBP6x6pvvhtVaNUD1HhRKt2HdoQIdXHs2pb8IooqOJ8lbQop711-Q&c=nP0yhvvnrE9I4C-DHFLjniGpKfONSyWoUM5bEfeunTmejMGdH1945w==&ch=4NgD5SVIubRXZsfs0h6_jdQpSCRO1dQvA29adlbgk-BVdlndCXMN5w==>



·     Above all, don't ever give out sensitive information like a bank account or credit card number even if you think the call "could" be legit.

·     If you want to be sure there isn't an issue with a real account of yours, call the company directly at their main customer service number.

In general, stay vigilant. These scams are constantly changing as they use new tactics every day to gain your personal information.









[http://files.constantcontact.com/ee1208b4001/f8f1ecc8-4884-4c21-8ed0-cf647e6db944.png]







Communicating: Talking
Repeat first

There are two types of situations where repeating first comes in handy.

By this I mean, before you respond to someone (giving your answer or an opinion) parrot back what you just heard. Repeat exactly or paraphrase what you believe they said. It will diffuse tension and clarify and illuminate the meaning.

1. Tense Situation. Let's say you're talking about a problem, an issue, or a concern with someone and the air is highly charged. When you repeat what you've heard, before interjecting a reply, you show that you've heard what was said. It conveys the idea that you're considering it, internalizing it, understanding it.

Whether you're talking to an agitated colleague, a boss or a friend, you will gain trust, buy time and even get insight by simply repeating what was said (or asked). This makes the other individual feel more comfortable with you ... and more willing to hear what you have to say.

2. Complex Situation. You're having a conversation at work, and you're not quite "getting" what someone says or means. Simply repeating what was spoken (either word for word or paraphrasing) ... and adding a question mark at the end with your voice, tells the person you're listening and would like more clarification.

Repeating first delivers an opening for individuals to elaborate on their thoughts. That's often when you get the fresh insight behind what was said.









[innovation]



 CLICK HERE ... for the TECH-TALK LIBRARY!<http://r20.rs6.net/tn.jsp?f=0019Vdkvi2YDkR7c6nuNrLSl3JP5YQ2poinU_Sa_X4tGw3k7_7ZhXYUgDu7FYQ71WRxAUumcM7DdnTjAN7BvHb4TAVTzkahRWdUCuHRk1NZe5Y2bUL76S6EcJG9YqxNrxw6RXlq3XHbzUyagWvay4_JnQ==&c=nP0yhvvnrE9I4C-DHFLjniGpKfONSyWoUM5bEfeunTmejMGdH1945w==&ch=4NgD5SVIubRXZsfs0h6_jdQpSCRO1dQvA29adlbgk-BVdlndCXMN5w==>

NOTE: Forgot your user ID? See your sponsor block at the top of this email.
Problems? Contact us at Support at Tech-Talk.com<mailto:Support at Tech-Talk.com>









 YOU CAN ASK A QUESTION!

Do you have an idea for an article, or a problem using technology in some way...

We can help! CLICK HERE<http://r20.rs6.net/tn.jsp?f=0019Vdkvi2YDkR7c6nuNrLSl3JP5YQ2poinU_Sa_X4tGw3k7_7ZhXYUgCxLxul8L0TEHll9OLyChzSLRcI6egSW2bSAznvQO6hCyBwKJOBBf5-b-9cWQ0NTwWecNcgnwoZGyj1ZHksL-NTUp8eb6D43fElBucigHtrlmQJfB0mThVE=&c=nP0yhvvnrE9I4C-DHFLjniGpKfONSyWoUM5bEfeunTmejMGdH1945w==&ch=4NgD5SVIubRXZsfs0h6_jdQpSCRO1dQvA29adlbgk-BVdlndCXMN5w==>.

Just contact us and we'll get the answer for you right away.


[http://files.constantcontact.com/ee1208b4001/464c50f5-0d77-4705-bb24-bf95437ce585.jpg]



Copyright 1996-2017 Shared Results International. Published weekly. Do not forward this issue of Tech-Talk.com without prior permission from Shared Results International. Distribution is limited by contract. Forwarding it to unauthorized recipients constitutes copyright infringement.
For information on site licenses or how to include additional recipients, email darci.hanning at state.or.us<mailto:darci.hanning at state.or.us>.










Cheers,

Darci Hanning, MLIS
Technology Development Consultant
darci.hanning at state.or.us<mailto:darci.hanning at state.or.us> | 503-378-2527 | www.oregon.gov/osl/ld<http://www.oregon.gov/osl/ld>
Follow us: Facebook<http://fb.me/orlibsupport> | Twitter<https://twitter.com/ORLibSupport> | Tumblr<http://www.statelibraryor.tumblr.com/> | Pinterest<https://pinterest.com/statelibraryor/>
Ask me about the Edge Initiative<http://oregonedge.net/>!
[cid:image005.png at 01D31C27.4B9FEA30]

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/libs-or/attachments/20171114/443afff3/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 15548 bytes
Desc: image001.png
URL: <https://omls.oregon.gov/pipermail/libs-or/attachments/20171114/443afff3/attachment.png>


More information about the Libs-Or mailing list