As online fraud cases rise, so does user awareness, pushing scammers to craft more sophisticated spam tactics. An expert from the testing lab of the Digital Economy League, Dmitry Sakov, spoke with socialbites.ca about these shifts.
“Even when people are wary of links or infected files, attackers sometimes push to verify information by sending sensitive data directly. The deception works precisely because it’s simple: people lose track of basic online safety rules when faced with convincing schemes. The core rule is still the same: never share usernames or passwords,” he explained.
Sakov noted that email phishing shows a kind of seasonality, influenced by the time of year, global events, and prevailing trends.
“During peak periods, it’s common to see emails from fake sites offering summer travel deals or messages from so-called government services tied to current circumstances,” the expert noted.
Scammers are increasingly using artificial intelligence to automate the creation and distribution of phishing messages. In addition to email campaigns, he pointed out that pop-up banners, counterfeit banking websites, smishing through SMS, and phone-based vishing remain persistent threats.
“Phishing emails often carry urgent warnings about fines or account blocks, and they request personal information or promise monetary rewards. These messages should be approached with caution. Spelling and grammatical errors can be red flags,” he added.
For protection against phishing, the expert advised a cautious approach: limit sharing an email address on untrusted sites and avoid clicking on suspicious pop-ups. He suggested checking the address bar for insecure protocols like http rather than https.
“Installing antivirus software helps block access to phishing sites or prevent the download of malicious files, even in basic, no-cost options. It’s important not to disable the firewall or relax preloaded system protections. Some users may opt to install a third‑party security tool and configure it properly. Keeping browsers, operating systems, and antivirus programs up to date is essential; developers frequently release security patches to address new threats. Email services usually provide spam filters, and users can configure email clients to restrict external content. There are various free browser extensions that add extra phishing protection,” the expert concluded.
There was also a note about ongoing regulatory actions in some regions against fraudulent schemes that mimic legitimate financial structures.