Topic: How do I avoid phising site? - page 2. (Read 1044 times)

Set 2fa, Metamasc, save the checked links. it will help to avoid trouble

If you want to avoid phising sites, then install a good anti-virus in your web browser. Also don't click on forward links as they are full of phising sites. You can also bookmark your favorites sites. I hope you have gotten your answer.

Most of the phishing url broadcasted through mass email. So never click on any link provided in email.
If you have received any email just like this email I got,: coinbase has started ERC20 support (https://bitcointalksearch.org/topic/m.34892221), never use link in email. Open new tab and move to coinbase through google or direct url bookmark.

Another phishing method is wrong redirection (mostly available in spamy blog posts). Like I am writing Click here for login to coinbase while I attached a link to bitcointalk instead of coinbase.

These are few example of phishing attack.

There is no single method to avoid phishing so that security must came up to yourself. Aside from basics and a must thing to do that were mentioned here, tust want to add that used a secure browser and be sure that you keep it up to date.

Mozilla Firefox and Google Chrome are some of the browsers that has some protection against phishing. Although at some cases* that they are being bypassed, still one of the good method aside from doing other methods to avoid being phished.

More importantly, be responsible enough to know the obvious thing and you are free to browse the internet without worres.

A legitimate company will never ask for your sensitive information by email. If you are contacted by a company, don't reply to the email or call the phone number or go to the website in the communication. Instead, look up the contact info on the company's website and contact them that way. Then you can ask them if there are any problems with your account, if you need to update anything, or whatever else. You can also ask them about the communication you received if they actually sent it.

When you go to a website, read the url bar and make sure it's spelled correctly. Spoof sites will have a url that looks similar to the real one, but it will be off by one character. For example, a fake Coinbase url might look like: http://Co1nbase.com or http://C0inbase.com.

If you ever think an account you have may have been compromised, or that you entered your credentials into a phishing site, take action quickly. Immediately change your password and then check your account profile to make sure all the information is still correct, especially your email address. If you learn there was a phishing attempt or other type of attack on a site where you have an account, change your password as soon as possible. In fact, change your passwords frequently just in case. If you use a service like LastPass then it's just a matter of updating that record so you always know your current password.

A good extra precaution is to also set up 2FA. That means that a hacker would have to not only hack your password, but also your phone in order to access your account. 2FA isn't a silver bullet but I think it can slow down attacks. You can also request your account be frozen if you think it's been compromised, and then be prepared to provide appropriate ID in order to unlock it once you know it's secure again.

Have a bookmark upon the trusted website and make use of it. Because, with the same name and same format there were lots of phising sites that will lead you towards trap. While entering a website, be careful and the same will help you stay away from scammers who are the root for those scam sites.

It is necessary to remember to the letter all domains of important sites: bitcointalk.org, myetherwallet.com, coinmarketcap.com and some others. This will require effort, but this is the best way to avoid phishing sites!

A simple trick I've learned a couple of years ago is to check what website will I be redirected to when I click any hyperlinks present on a webpage. WhereGoes (http://wheregoes.com/ try it for yourself) simply checks the website you'll be landing once you clicked on a link or have been sent a link by someone. This wouldn't do you any harm since the host pc of the said website would take all the potential blows if in case there are malicious programs available in there or whether it's a phishing site or not. Also, when logging in to a website, always check whether it is on HTTPS since it determines whether the website you're visiting is protected and have complied to security standards or not.

Well you easily will get the phising link from email and also on pm on this forum, don't click it please becarefull of it and the first you should do are see the url first just right click and copy the url then paste on net tab, maybe the real link will doesn't appear so that link should be phising web.  So Many people out here wanna get money with steal our profile, so becarefull don't trust the other people.

The simplest way is to bookmark the sites you frequently visit and always use that to access them. If you get an SSL certificate security warning, even if you're on the correct URL, turn back. If you receive emails/PMs from the services you use that say something is wrong, don't click the link within them and access the site through your bookmarks or manual URL input instead.

At the end of the day, there are very few phishing attacks that are sophisticated enough to fool you even if you just exercise a tiny sliver of caution. The people who had their MEW wallet hacked recently, for example, ignored the certificate issues their browsers gave them. Just keep general security practices in mind and you should be fine.

I saw a very interesting idea once.

Save your passwords on your browser or use a password manager,  and use 2fa.

If you go to the phishing website , the browser/manager won't recognize it and you will have to type your password. Then you will know something is wrong

Leave your greed outside your email inbox/account; if you see an email/offer that sounds too good to be true, it probably is.

Always know the true status of your account and investment, don't let a scammer be the one to tell you the status of your account, when you see an email/message saying your account has been deactivated, compromised or what have you with a click here link". Just delete it, most of the time they are phising. If you must visit the site, open your browser and manually enter the site url or open it from your bookmark (you need to make it an habit to bookmark the correct url of the site where you have account or investment)

And very importantly, make Google your friend, when you see a suspected email/offer run it by Google and see what Google have to say about it

I have a question too, how about copying the link and pasting in another browser will that still affect your filles on the current browser?   

It would be best to bookmark original website and use bookmarks to reach it. Always check url on address bar. I would recommend to avoid clicking links one emails, personal messages which was sent by unknown senders. Be careful with links which are hidden under URL shortener. When you are using Google search, never click on websites which are shown as ads in search results.

Here are some tips on how to avoid phishing sites: You must verify the site's security, Keep your browser updated, Use antivirus software and the most important is to Think before you click.

For further explanations you can refer here:

https://bitcointalksearch.org/topic/m.37467227

Always check the URL if it has a correct spelling. You can also check if there sight is secure by looking at the upper left of the address page. There should be a green lock and the word SECURE. Make it a habit to add the pages to your bookmark. Avoid clicking in on adds and make sure you have a separate email for money involved transactions. Use a different password as well.

Always check the address bar of the URL you're going to to make sure that you're actually navigating to the legitimate website.

For more information:

• Cryptocurrency and Investment Scams
• Cryptocurrency and wallet security: DOs and DONT's

Boomark safe sites (your favorite trading places for example) and install EAL or MetaMask or Cryptonite.

EAL : https://chrome.google.com/webstore/detail/etheraddresslookup/pdknmigbbbhmllnmgdfalmedcmcefdfn

Metamask : https://myetherwallet.github.io/knowledge-base/migration/moving-from-private-key-to-metamask.html

Cryptonite : https://chrome.google.com/webstore/detail/cryptonite-by-metacert/keghdcpemohlojlglbiegihkljkgnige

Never click on a link in google searchs, write the adress yourself. Never click on unknown link in general and read everything you can about security.

The simple answer is - never click on a link, always type the URL into your address bar. One way to check is to hover over the link, and read the target address, if it is different then it may be a phishing site, but be aware that this can be spoofed as well.

Pls am new hear I need useful advice on how to avoid phising sites