{"id":179,"date":"2017-12-16T10:33:00","date_gmt":"2017-12-16T05:03:00","guid":{"rendered":"https:\/\/www.tikaj.com\/?p=179"},"modified":"2023-10-26T18:00:30","modified_gmt":"2023-10-26T12:30:30","slug":"how-to-identify-a-phishing-website","status":"publish","type":"post","link":"https:\/\/www.tikaj.com\/blog\/how-to-identify-a-phishing-website\/","title":{"rendered":"How to Identify a phishing website?"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

<\/p>\n

Protecting yourself from harmful threats online like phishing website is a constant battle in this day and age. Security researchers and media outlets have a nearly never-ending list of topics and incidents to cover that acknowledges that we’re not safe online. <\/p>\n

<\/p>\n

<\/p>\n

In 2016 Q4 alone, phishing attacks have increased by a staggering 500%, claimed by a report by proofpoint<\/a>.<\/p>\n

<\/p>\n

<\/p>\n

GreatHorn’s 2017 Spear Phishing Report<\/a> revealed that 91% of cooperate related phishing attacks are display name spoofs, adding that on average they receive one dangerous message per day. It is expected to be inclined in upcoming years. But with few tricks one can identify phishing websites. Here are the top tips to follow while browsing suspicious website:<\/p>\n

<\/p>\n

\n
\n\n<\/div>\n\n
\n
\n

Check the URL<\/h3>\n

The first step is to hover the cursor over the URL you received from mail to test the authenticity of your web address.\u00a0<\/p>\n

You can look for a padlock symbol in the address bar to verify that the URL begins with \" https:\/\" or ' http:\/.\u00a0 The only difference is that \"https:\/\" means that the web address has been encrypted and protected with an SSL certificate. <\/p>\n

You should also give attention to:<\/strong>
- The base domain of the website
- The full URL of the website
- The website registration details (web site owner & date registered)<\/p>\n<\/div>\n<\/div>\n

\n

Analyse Website Content<\/h3>\n

When attacker is trying to forge an official website, there are certain things it would miss like:
- The site will look little offset
- Spelling Mistakes
- Grammatical
- Low resolution images<\/p>\n

In an official website feel is very standard, sites is made with details in mind on the other side phishing website will miss some of the factors. This gives a big red flag that it is a phishing website.<\/p>\n<\/div>\n<\/div>\n

\n

Payment Methods<\/h3>\n

An official website will always accept online transactions via different platforms and certain debit cards are accepted. If the mode of payment is only via bank without any more details it should be flagged as it might be a phishing website.<\/p>\n<\/div>\n<\/div>\n

\n

Research<\/h3>\n

If anyone is feeling suspicious about any website , they should start with looking at the website directly. Also consider looking at the website\u2019s WHOIS information. It lets you check who is the owner of the website and other valuable details which can help you distinguish between an official and phishing website.<\/p>\n<\/div>\n<\/div>\n

\n

Contact Us Page<\/h3>\n

Contact us page is very essential for any service. In an official website contact us page will contain ample amount of information like postal address, contact number, helpdesk or contact email address and social media channels. If none of them are present, the site can be phishing and should be treated as highly suspicious. <\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n\n<\/p>\n

<\/p>\n

Short Case Study<\/h2>\n

<\/p>\n

<\/p>\n

Below is a snapshot of a phishing page targeting Metrobank of philippines. It\u2019s received by their customers for updating their password. If looked carefully the following things can be seen clearly:<\/p>\n

<\/p>\n

<\/p>\n