Use Microsoft SmartScreen to help avoid phishing

Use Microsoft SmartScreen to help avoid phishing

To help protect your computer from online threats, Microsoft SmartScreen technologies block links to fraudulent websites that are used to commit phishing scams. SmartScreen technologies are found in Microsoft products and services including the Windows Internet Explorer browser and the Windows Live network of Internet services.

• What are phishing scams?

• What are SmartScreen technologies?

• What should I do if I think that I have entered my personal or financial information into a phishing website?

• How can I avoid phishing scams?

What are phishing scams?

Phishing scams are online scams that criminals use to commit fraud. Criminals use fake websites, instant messages (IMs), or deceptive email messages that mimic trusted businesses and brands to steal personally identifiable information such as user names, passwords, and credit card numbers. Phishing links might appear authentic but they direct you to fake websites.

What are SmartScreen technologies?

SmartScreen Filter is a feature in Internet Explorer that helps detect phishing websites. SmartScreen Filter can also help protect you from installing malicious software.

In Internet Explorer, SmartScreen helps protect you from websites that are known to contain phishing threats. If you attempt to visit a suspected or known phishing site, SmartScreen displays warnings that advise about the potential dangers and allow you to provide feedback.

Windows Live also uses SmartScreen technologies to help protect you from social engineering attacks. For example, if you use Windows Live Messenger and you click links to websites that are known to contain malware and phishing threats, Windows Live blocks the malicious site. If you visit unknown websites, Windows Live redirects you to a page that offers guidance about how to help protect yourself. No matter what web browser you use, you get an extra level of phishing protection when you use Windows Live Services.

What should I do if I think that I have entered my personal or financial information into a phishing website?

Immediately do the following:

• Report the incident to your credit card company and the company that you think was deceptively imitated. Place a fraud alert on your credit reports. (Check with your bank or financial advisor if you are not sure how to place a fraud alert.)

• Change the password on all of your accounts.

• Contact your banks and online merchants directly. When you change the password or personal identification number (PIN) on all your online accounts, do not follow links in fraudulent email messages to get to those sites. Type the address directly into your browser or use your personal Favorites menu.

• Close any accounts that have been fraudulently accessed or opened.

• Review your bank and credit card statements monthly for unexplained charges or inquiries that you didn't initiate.

• If you discover that you have been a victim of fraud, file a report with the local police.

• For more information, see What to do if you think you have been a victim of a scam.

How can I avoid phishing scams?

• Install the latest version of Internet Explorer, which provides built-in phishing and malware protection. Make sure that the SmartScreen Filter is enabled.

• Be protective of your personal information. Your personal information is valuable to criminals, so be careful when you enter personal information into a pop-up window or a website. Never share personal information in an email message or IM that you think might be fraudulent.

• Don't click links in suspicious email messages. Type addresses directly into your browser or use the links in your Favorites menu.

• Don't trust sender information in IMs, email messages, or messages on social networking websites.

• Use websites that provide privacy statements or information about how the sites help protect your personal information.