3 quick tips to detect phishing
.
** Once you finish reading, check the pictures of fake sites attached and post in the comments why are the pages fake.
I can detect fraudulent emails just by looking at them, I have developed a 6th sense for it. But sometimes I have to admit some email do seem legit and I have to investigate further. But don't worry, here's a short guide on how to check them and it will work in 99.9% of the cases.
The typical case, you receive an email from a well know company saying you need to take action, or they're billing you for something you didn't purchase, etc. The email is not detected by the SPAM filters and lands in your inbox. Let's go!
1. Check the email address
The email address can be concealed. A full email address contains the name to display and the actual address to sent to. For example "Amazon Customer Care" customercare@amazon.com . This seems to be legit, the actual email address does point to the real amazon domain.
But let's take this one now "Amazon Customer Care". Careful, this email is not being sent from the amazon domain owner. This email is being sent from mailer.com. The domain is alway the closest to the extension. Examples:
amazon.com -> this is amazon.com
cdn.amazon.com -> this is amazon.com
mail.amazon.com -> this is amazon.com
amazon.super.com -> this is super.com
amazonmail.yipee.com -> this is yipee.com
amazon.legit.com -> this is legit.com
Clear? Never trust emails that do not come from the real domain.
2. The links inside
I have come across really elaborate emails, they do look exactly like the real thing for example Apple saying you are being charged £49 for app purchases. I am not even sure that Apple sends these emails so another tip, check where to the links take you. This is very easy. When you "hover" a link (you put the mouse on top of it, at the bottom left or right of the browser you will see where the link is going to take you. We said this example was for apple, so the link should take you to Apple if there is any action. But again, the real address can be concealed.
"ze2000 click here to review you account" //
Hover info "h t t p://marketing.mails.com/email=your@email.com
(those spaces there are on purpose so the link doesn't get converted to a real link when I publish this article)
What will happen if you click that link is that you will land in a page that it's not apple and they will know that you had interest in that email. So automatically they will know that you probably have an Apple account, that your email is valid so they can send you more attempts of phishing, etc. There's a lot of info that can be stolen with a single visit:
- your email
- you location
- your computer address (IP)
- your language
- your operating system
- your phone number and carrier (if you click from your mobile)
- etc.
3. COMMON SENSE! If you don't have an Apple account and you receive emails from there, why even bother? If you are not expecting a parcel, why would you get an email from FedEx? If you don't have a contract with X phone company, why would they charge you?
Emails are free, easy to create and easy to manipulate. If they want to steal your money they will charge directly your bank account, why would they warn you?
And the last bit of common sense: NEVER give your personal details or bank details to anybody that asks them through an email unless you are specifically expecting that. Example:
"ze2000 we are giving away 10 Samsung Galaxy for (insert your carrier here) customer. Just fill out this form to enter the raffle".
Oh great! A free phone! How convenient for doing nothing when I am already a customer!
Use your common sense!
I hope this mini guide will help you, be safe!
PS: Please don't send any more money to the Nigerian prince that inherited millions but needs your help and will share with you his fortune if you do.
I can detect fraudulent emails just by looking at them, I have developed a 6th sense for it. But sometimes I have to admit some email do seem legit and I have to investigate further. But don't worry, here's a short guide on how to check them and it will work in 99.9% of the cases.
The typical case, you receive an email from a well know company saying you need to take action, or they're billing you for something you didn't purchase, etc. The email is not detected by the SPAM filters and lands in your inbox. Let's go!
1. Check the email address
The email address can be concealed. A full email address contains the name to display and the actual address to sent to. For example "Amazon Customer Care" customercare@amazon.com . This seems to be legit, the actual email address does point to the real amazon domain.
But let's take this one now "Amazon Customer Care"
amazon.com -> this is amazon.com
cdn.amazon.com -> this is amazon.com
mail.amazon.com -> this is amazon.com
amazon.super.com -> this is super.com
amazonmail.yipee.com -> this is yipee.com
amazon.legit.com -> this is legit.com
Clear? Never trust emails that do not come from the real domain.
2. The links inside
I have come across really elaborate emails, they do look exactly like the real thing for example Apple saying you are being charged £49 for app purchases. I am not even sure that Apple sends these emails so another tip, check where to the links take you. This is very easy. When you "hover" a link (you put the mouse on top of it, at the bottom left or right of the browser you will see where the link is going to take you. We said this example was for apple, so the link should take you to Apple if there is any action. But again, the real address can be concealed.
"ze2000 click here to review you account" //
Hover info "h t t p://marketing.mails.com/email=your@email.com
(those spaces there are on purpose so the link doesn't get converted to a real link when I publish this article)
What will happen if you click that link is that you will land in a page that it's not apple and they will know that you had interest in that email. So automatically they will know that you probably have an Apple account, that your email is valid so they can send you more attempts of phishing, etc. There's a lot of info that can be stolen with a single visit:
- your email
- you location
- your computer address (IP)
- your language
- your operating system
- your phone number and carrier (if you click from your mobile)
- etc.
3. COMMON SENSE! If you don't have an Apple account and you receive emails from there, why even bother? If you are not expecting a parcel, why would you get an email from FedEx? If you don't have a contract with X phone company, why would they charge you?
Emails are free, easy to create and easy to manipulate. If they want to steal your money they will charge directly your bank account, why would they warn you?
And the last bit of common sense: NEVER give your personal details or bank details to anybody that asks them through an email unless you are specifically expecting that. Example:
"ze2000 we are giving away 10 Samsung Galaxy for (insert your carrier here) customer. Just fill out this form to enter the raffle".
Oh great! A free phone! How convenient for doing nothing when I am already a customer!
Use your common sense!
I hope this mini guide will help you, be safe!
PS: Please don't send any more money to the Nigerian prince that inherited millions but needs your help and will share with you his fortune if you do.
Alex › Good to know that
Alex › I keep receiving emails from Apple and amazon or ebay that I bought something, "xpounds will be charge from your account"...looool I don't even have an iPhone ???
ze2000 › just block them and you won't see them again.
stepinsidee › Omg I get that all the time!! Be careful when you open them though because some are hacks @alex
wanderingenie › I receive such all the time. I block them but I don't think Yahoo! remembers that I blocked the email address. I even marked them spam before but I still receive e-mails. I no longer open them.
Issaka › I'm really intimidate about those adds sometimes.
Shavkat › These are good tips
