A phishing email will usually try to direct you to a fraudulent website that mimics the appearance of a popular website or company. The spoof website will request your personal information, such as credit card number, Social Security number, or account password.

You think you are giving information to a trusted company when, in fact, you are supplying it to an online criminal.

Deceptive URLs.

Be cautious. Some fraudsters will insert a fake browser address bar over the real one, making it appear that you’re on a legitimate website. Follow these precautions: Even if an URL contains the word "baycities," it may not be a Bay Cities site.

Examples of fake addresses:

• http://signin.baycities.org@10.19.32.4/
• http://83.16.123.18/pp/update.htm?=https:// www.baycities.org/=cmd_login_access
• www.secure-baycities.com
• bcwebster.baycities.onlineaccounts.ti

Always log in to Bay Cities by opening a new browser and typing in the following: http://www.baycities.org, then use the links to proceed to Home Banking.

The term "https" should precede any web address (or URL) where you enter personal information. The "s" stands for secure. If you don't see "https," you're not in a secure web session, and you should not enter data.

Out-of-place lock icon.

Make sure there is a secure lock icon in the status bar at the bottom of the browser window. Many fake sites will put this icon inside the window to deceive you.

Protect yourself from fraud.

Click here to read a special Fraud Alert from the FBI -- and make sure you tell your bank or Credit Union if you can answer "yes" to any of the questions!