"Phishing" or phishing sites work by impersonating the companies you trust like banks, financial service sites, or online payment firms to push malicious code (viruses) or software (malware) onto a trusted device. Or They steal personal information by getting your password and other personal details to gain access to your actual accounts.
One of the most commons methods of phishing is sending “phishing emails” to potential victims. These emails may ask you to reply with your personal information or even redirect you to a page that poses as a legitimate website, where you may unknowingly input your information.
To help avoid being the victim of phishing, there are indicators you can look for to help identify a potential phishing e-mail:
- an unknown sender;
- an unsolicited correspondence;
- an unexpected correspondence;
- generic greetings;
- requests for personal information;
- a sense of urgency; and
- poor grammar or spelling
If you think you are reading a phishing message, here are some things you need to look out for when you visit a website:
- Look at the URL
Hover over any e-mail links to see the site the link is sending you to. Do not click the link. Phishers will inject a page where you need to enter your personal information in it. They’re highly skilled at making the page look like the real thing. Always make sure that the URL you’re clicking is the correct one for the site.
For Coins.ph, you should always see https://www.coins.ph/ as the spelling of the URL.
- Check if it’s HTTPS.
That “s” portion in HTTPS means “secure”. It is a security protocol websites use to ensure your personal details are not phishable. You will see a lock icon or something similar to know if it is HTTPS. You should see something like the one below:
- Do not install plugins or software from an untrusted website.
Your information may also be leaked not because of the website, but because someone will make you install a plugin in your browser or a program in your computer. You’ll see this when you download files and there are other software bundled into it. Do not click on links in e-mails that look suspicious. Be very careful about installing these, as these may log your keystrokes and send them over remotely to someone in the web.
Make it a habit to keep your PC virus free, install a trusted anti-virus software, keep your firewalls on, and clean out your computer’s files regularly.
- Do not provide your log in credentials over the phone or e-mail.
Providing sensitive, personal information to anyone over the phone or e-mail may give a cyber-criminal easy access to your online accounts or computer.
Have more questions regarding phishing? Think you may have already been a victim? You may reach us at firstname.lastname@example.org and our team will gladly assist you!