In 2014, almost 30% of online identity thefts were aimed at gathering internet users’ financial data. We’re only a few months into 2015 but it already saw a number of phishing attacks, and is predicted to be even more sophisticated as the year goes on.
Phishing is the act of stealing your personal information online, which would then be used for illegitimate activities. Phishing sites and emails are notorious for gathering usernames, credit card details, and passwords by making it seem like you are dealing with an established brand or website.
It would take a keen eye for someone to detect online fraudsters, as scammers constantly find ways to make these fake sites look more believable to their victims. Even social networking sites are being targeted by those who want to steal information from you.
Becoming aware of these sites can help you become more protected against cyber-attacks and identity theft. Here are five signs that can help you determine whether the site is legit or a scam.
1. Poor spelling and grammar on online copy
One of the most telling signs that the site isn’t legitimate is the presence of spelling and grammatical errors. Some errors are easy to spot, as hackers are least concerned about spelling and grammar.
Remember that trustworthy companies have a dedicated team of professional editors to ensure that the site is error-free. Phishing sites are usually full of simple spelling mistakes and grammatical errors. Even the use of punctuation marks can tell you whether the site is legit or not. Make it a point to read the fine print before you engage, because the text can tell you a lot about the authenticity of the site.
2. Too good to be true offers
Another way to tell if it’s a fraudulent site is if the offers are too good to be true. For instance, Facebook would definitely not give you $100 by entering your social security number. This could also come in the form of emails saying you won a contest or a lottery that you never joined.
The reason why scams use offers is to lure the customers to engage with them. These offers may be exciting at first, but it would be best if you could think properly before you act on something. If the site is trying to offer a product or a service, it’s best to do a quick Google search to guarantee if it’s real.
3. Email comes from questionable source
Scammers usually target the big guys. As such, they use email addresses that would resemble the company that they are trying to fake.
For instance, an official email from PayPal would naturally end with “@payal.com”. Phishers would use an email that ends with “@paypal.co.uk” or anything similar to it, with the attempt of fooling recipients.
Another way to check is this: On your inbox view, hover your mouse arrow over the name of the sender on the From column. The email address will show on a small pop-up box. The same rule applies—if it’s from a legitimate website, it would end with the official domain name of the site.
Another thing to point out is when the From address on the email message itself lists your email address. That is a sure sign of a fake email. If you also see a huge list of recipients, as well as ‘undisclosed recipients’, then it is best to ignore the email.
4. Site or email asks for unnecessary personal information
If the site is asking for sensitive information that is not necessary to the transaction, then you should be wary. Try and think of the information that you should share.
For instance, purchasing a product would require your credit card information but not your social security number and the address of your mom’s house. You can also check the website if the forms are well within the design specifications. Most phishing sites aim to look like the popular site that they are duping, but the processes and forms are usually poorly constructed.
5. Links in email direct to a suspicious website
Some phishing sites have working links that are connected to other pages that are used to steal information from you. Hovering over the link will help you spot whether the link is connected to a legitimate page or whether it is connected to a whole new different site.
A lot of popular websites allow subdomains. The URL of official subdomains would show as “http://subdomain.domain.com”. For instance, http://help.yahoo.com is an official subdomain.
If you hovered over the link and the URL structure changed (e.g. domain comes before the subdomain), that is a sign of a phishing site.
Looking out for these signs can help protect your personal information from those who just want to use and abuse it. Following these tips can help you spot fraudulent sites, making your.
Leave a Reply