Pre-texting

Financial pretexting is a type of social engineering when someone under false pretenses tries to get your personal information to gain access to your cash and credit.

Phone call: Hi [your name], this is your bank. I see some unusual activity on your account. I need to confirm this is you, so can you please provide your card number so I can confirm it?

Recorded message: This message is an important reminder for [your name]. Recently, somebody attempted to change the password of your [company] account. A temporary PIN was provided. If you did not request this temporary PIN, please call us immediately at [number].

Email: After your last tax filing, we have determined that you are eligible to receive a tax refund of $180.00. To access your tax refund, use the following personalized link [fake link].

Use 2-factor authentication to access email. For example, use a password + a unique code texted to your phone for your email.

Don't immediately click links or open attachments in emails. Hackers can pretend to be from companies you know and use, so be sure before you click. Or better yet, go directly to the website in a web browser first. If you’re not expecting an email attachment or link, call or text the person who sent it to ensure it was really them.

Avoid uploading personal information online (like your bank account). Even if you know the company or website, be sure the device you are using is secure when you need to upload personal information.

Start new sessions in your browser frequently. Completely log out and close your browser when finishing a session. Clearing your browser history regularly is a good idea, too.​