What's the Deal with Social Engineering?
An Introduction to Social Engineering and How to Protect Yourself
When seeking information about theft and scams, a term regularly used is “Social Engineering.” This refers to any method of theft that manipulates your human nature in order to gain access to your online financial accounts. In summary, Social Engineering is how thieves use our normal interpersonal communications and societal norms against us.
Here are a few ways you can protect yourself from fraudsters who are using Social Engineering techniques:
Don't respond to ANY email or social network post or message that asks for money or confidential information. Thieves can hack email and social network accounts, and then pose as a friend or family member in order to gain your trust. Never call the number that is sent to you via email or text, but instead contact the company using a trusted number you know or can find on their website.
Don't assume that an unsolicited phone call or email is actually from a trusted source. Thieves can research your purchases or donations, then pose as a business or charity you trust. Or, they may pose as law enforcement, a bank officer or another trusted authority figure. Just because they have bits of information about you or your past activities doesn't mean they are legitimate.
VERIFY. VERIFY. VERIFY.
If someone on the phone, or a message in your inbox, is telling you there is a problem with your online banking account, online auction account or credit card account, don't give them additional information to “fix” the problem. Instead, hang up the phone or delete the email and check those accounts directly by following your normal login steps. Or you can call the published customer service number (the number on the back of your card) to confirm there is an issue or explain the situation.
DON'T USE KNOWN INFO
Be conscious what can be learned about you. Many kinds of online accounts, including online banking, use challenge questions as part of their security. Make sure you don't choose responses that can be found online. For example, don't use your mother's maiden name if it is mentioned on a social network profile; or the model of your first car, if you discussed it on a forum. Thieves are very good at digging out those details from online searches.
DON'T OPEN OR DOWNLOAD
Remember, even the most innocent email attachments can be infected with computer malware. Common and popular files like PDFs, JPGs and spreadsheets can provide a platform for installing viruses or keystroke-logging malware on your computer. If you aren't certain the file came from a legitimate business, charity or person, don't open it without verifying. Call them and ask if they sent an email with an attachment.
Scammers and thieves are smart and very good at exploiting your honesty and natural cooperation. They can send an email that looks like it came from a family member, a company you would normally trust, or hijack your best friend's social network account. Don't let your good nature become your downfall.
The best way to avoid Social Engineering schemes is to be cautious and suspicious of ANY request for money, passwords, account numbers or other confidential information—no matter where it seems to be coming from.
To learn more about other common scams and how you and protect yourself, check out our webpage with additional information.
Fidelity Bank does not control the content of or approve any website that is linked through this browser. Search results are not filtered or screened by the bank or any of its agents, representatives or service providers. Users, who search the Internet using their browser, do so at their own risk, and are responsible for the results. The portals and links are provided by an outside source. Fidelity Bank is not responsible for the content.