Whenever you access the Internet through a PC or a mobile device, you run the risk of exposing yourself and your company’s systems to online scams or unauthorized app downloads. You may be unaware information has been stolen until the money is gone from your account.
Online fraud schemes attempt to obtain confidential information—including passwords, personal ID numbers, and token codes—and use it to access your accounts, transfer money, or commit other fraudulent acts. The primary methods of online fraud are social engineering, malware, and a combination of both.
Social engineering is an attempt to manipulate you into performing actions or divulging confidential information by impersonating a trustworthy entity in electronic communications. These communications can be sent by email (phishing) or text message (smishing).
Malware is malicious software installed on your computer without your consent. Once there, it can record keystrokes, re-direct your browser, or display fake websites, all in an effort to impersonate your business in online banking transactions. Your computer can become infected with malware through documents attached to emails, links contained in emails, infected search engine results, or by clicking on links, videos, and documents on legitimate websites, particularly social networking sites.