Topic: how to recognise a phishing site (Read 297 times)

• Always verify the site you are visiting is legit especially while you are downloading any application from that site.
• Try to use one good ad blocker which will not hide any google add blocks from you.
• Only unlock your account when you are ready to send a transaction.
• Don't provide any details on random URL which you are getting for crypto-related news.

You can't do that in google because if you put your mouse into the site listed on the google result it will shows a google link not a direct link. You can do that if someone posted a link here with hyperlink you can check below left of the browser.


I want to suggest OP to check my thread here https://bitcointalksearch.org/topic/--512688 some list of phishing Electrum website and still looking for them to add on my list so that other forum members are aware about phishing Electrum websites.

I hope that this reply of mine could help you avoid phishing sites. I really don't understand the meaning of your poll.

true. as a matter of fact many people got phished by accidentally going thru the google ads link
for eg. I just did a search on chipmixer... and google shows an ads of fake chipmixer site on the very top  
fortunately this phishing site use very obvious different domain chipmixer.site, so it's easily spotted

This is the tool I use to check whether the website I visit is secure, at least it can alert me to insecure sites. This helps us be more alert and cautious with strange websites. If you use antivirus software, it will also warn you about sites that can be trusted and unsafe. Anyway, the tool is only to help you filter out unreliable websites, you have to determine whether they are fraudulent or not.

                                                                                   


There are many ways to identify phishing sites, it is also quite recognizable if you are a cautious person. It is best not to go around the web by searching on google, it is important that you save the addresses of the websites you often visit. In addition, you can also use https://www.scamadviser.com/ to find the information about the website you suspect, phishing sites that have in common are often established in a short time.

                                                                                   

For example:
If you often use bitfinex.com and don't save it in your favorites,some beautiful day, you'll have to regret it when you log into the hacker site without knowing it. Hackers who created bitfienex are similar to bitfinex, if you don't notice it, you will be fooled immediately.  Another case is that Binance is also fake a lot, so if you intend to participate in crypto, remember to protect your money as a top priority.

                                                                                     

                                                                                     

Image source: https://bitcoin-news.vn/san-binance-bi-gia-mao/

Padlock sign can be a good idea to check but actually it's no guarantee that a website is no phishing site. Phishing site scammers are improving their scam attempts and the number of phishing sites being in possession of a green padlock sign are getting higher:

Half of all Phishing Sites Now Have the Padlock Sign

Safest was is to check always the url by yourself if it's legit.

Welcome to the crypto world,there are topics already starts here regarding your questionnd what you only need is to read them like this

https://bitcointalksearch.org/topic/m.50746463

https://bitcointalksearch.org/topic/crypto-scam-howto-protect-yourself-4264404

https://bitcointalksearch.org/topic/how-to-know-if-the-website-is-a-scam-there-you-find-it-4456502

Hope the answers and topic inside those threads will help you to prevent from being victim

I have small tips to check if that website is phising.
- First if you search in Google, check that domain website.
Most of phising site always using google ads to make in top google search.
- Always check Padlock in url
- Add some Anti Virus to protect your device to access website
- Always check shorten url with http://checkshorturl.com/

Its not easy to know if the site is phishing or not there are some ways to register a domain which is look a like with the original website.
Remember about the "punnycode" where they can registered a domain then the browser shows the same as original domain.

So my suggestion if you want to know if the website is phishing site make a thread here on the forum and copy and paste the url here it sometimes shows the punnycode domain but if not much better to ask it here so that other forum members test the website or maybe someone knows about the website.

This is a very dangerous suggestion as Google tends to show ads as top results. It's far safer to type out websites on your own.

It might be also worth to note that phishing can not only happen through fake sites.

If a website (e.g. an exchange) is vulnerable to XSRF (Cross-Site request forgery), one might be able to access / change your login credentials or do anything else in your name.

For example:
Lets look at the exchange: www.exchange.com
This (theoretical) exchange is vulnerable to XSRF and handles most actions with GET-Requests.

If you are logged in into www.exchange.com, i can send you a link in this format (given that that's how the webserver / PHP script works):
www.exchange.com/settings.php?newpassword=MySecretNewPassword

This will change your password to MySecretNewPassword, and the attacker can instantly log in (given that no 2FA etc. is activated).


This is a simple (and easily recognizable) example. But URLs can be quite long where it is not that easy to see anymore.
Furthermore an attacker might be able to encode the parameter, depending on the implementation of the webserver. So instead of ?newpassword=MySecretNewPassword, you would see some random-looking long string of characters.

Just checking the domain name and the TLD is not enough here.

No, they are not easy to recognize when faked in a professional way. Our company host a site with about 5000k hits per day. Every now and then phishing sites pop up which look EXACTLY like our page, they simply copy our CSS styles. The only way to recognize that it is a phishing site is via the URL, you cant rely on "oh I am sure I would recognize a phishing site when I see one".

Welcome.
I would suggest google as verification. Write website title/address to google and see what address will come on first place. Its the original website. Phishing site will not be there or even if, on further places.

Firstly I would suggest you protect yourself with double layer security 2fa authenticator would be a very good app for your device so even if you get attacked by phishing link you have some protection.

OP take note of all the responses here. They are big help.

I just want to add that always used an updated browser. They have some sort of tools which detects automatically whether you will lead into a sh*t site e.g Firefox and Chrome.

And last thing, "common sense". You should be vigilant on the links you encountered especially on emails you will found on spam folders. If you are an internet guy for a long time now, dealing with those might not be difficult to you.

This thread is pretty useful: [GUIDE] Use this for identifying Scam/Phishing/ Websites & Exchanges in Crypto. Also see this thread: Steps to check potential phising links.

Aside from whatever software protection elements you decide to use, knowing which is the proper url you want to access, and checking it on sites where you enter sensitive information is a must. In addition, common sense goes a long way (i.e. don’t click on links originated from unknown email senders, displayed in a random telegram chat, and so on).

Edit : @sheenshane beat me to referencing one of the best threads around on the topic.

Edit2: The poll options don't make any sense.

A phishing site is very easy to recognize. However, you still have to be aware of the matter that they are actually everywhere. In the email, phishing site will always ask you for personal information or data especially connected with finance and social media accounts. In suspicious ads, once you have clicked the add and asked for your credit card information then that's a phishing site.

In Fake login page, you just have to check the website's link and you can easily recognize that it is a phishing site if it doesn't have a (www.) and (.com). Always check the URL/link before you load the site.

A very interesting topic here regarding [GUIDE] Use this for identifying Scam/Phishing/ Websites & Exchanges in Crypto by @GreatArkansas

1.  Visual inspection:
One of the commonest ways is looking at the domain itself, letter after letter to be sure that you are visiting the right domain. In this instance, you must know the official domain of the website you want to visit letter to letter

2. Check for domain age:
In most cases, phishing domains are usually newer compared to the Official domains except a few that are quite old. You can use different tools to such as
- https://www.netcraft.com/
- https://domainbigdata.com/
- https://www.whois.com/

3. Use Trusted anti phishing browser extensions
They may not be so perfect but together they can help you at times when you are the not so alert. they will warn you if you are about to visit a phishing website. Such extensions include
- Netcraft
- Cryptonite (metacert protocal)
- Ether Address Lookup (EAL)
- Metamask

I fixed that for you, LetsEncrypt offers free TLS certificates.


Scammer don't even need to pay for it. HTTPS only ensures that the traffic between the client and the server is encrypted.
This does not imply that you are communicating with the server you want to communicate with.

Unfortunately a lot of people think that the green lock besides the address bar means it is the legit site they wanted to visit 

You need to know the real domain name with the TDL.
Example
Real domain name: bitcoinTalk
TLD: .org

One misconceptions that people think may not be a phishing site:
# Having https instead of http. https always do not mean that it's secure. Anyone can buy cheap SSL and add it with any domain.

Side note: Sometimes people use domain masking. This allows to hide the original domain name in the address bar but basically you are using the original url which is not visible. Anyone can end up thinking that it's phishing link but in reality the main domain was just masked and it can be unmasked anytime by the way.