When was the last time you checked a website’s URL for spelling errors? For the most part, we don’t. The last thing we would think about when logging in or browsing through the web is spelling because we validate a site legitimacy through how it looks. For example, we type in “Facebook” and see the familiar blue and white layout and proceed to log in. Little do we know we have fallen victim to a hacker’s scheme.
A Hacker’s Scheme
From phishing emails to copy-cat websites, hackers love to play sneaky tricks on us. How? These tricky cybercriminals often purchase fake websites and set it up to look exactly like the real one. They get away with this scheme by altering one small letter on the site’s URL that we usually would not notice. For example, hackers would include an extra “o” on Facebook or change the “.com” (top-level domain) of the site. Once you fall into a hacker’s trap and log into a fraudulent website, a keylogger malware will steal all your information.
Test yourself. Can you spot the visible difference?
- Facebook.com → Faceboook.com
- Dropbox.net → Dropbox.com
- Gooogle.com → Google.com
- Instgram.com → Instragam.com
How did you do? Hopefully, this convinced you to always double-check your website’s URL.
TWO TIPS:
One, bookmark key sites you frequently visit so you’ll never risk hitting the wrong key.
But even better, have a web gateway installed that BLOCKS sites that are suspicious and fraudulent. That way, even if you click on a link on a phishing site or type in the wrong URL, the site will be blocked, protecting you and your employees.
More ways you can protect yourself
- Are there misspelled words? If the spelling is incorrect, the website is most likely a fake. As mentioned, cybercriminals often change one unnoticeable letter on a site’s URL to trick users into believing its legitimacy. Legit companies would not risk any spelling errors on their pages to keep their brand’s credibility.
- Is the website secured? Security is always a top concern for companies, so they ensure that their websites are secured. Look over the search bar next to the URL. Do you see a secured lock? If not, click away from the site as it may contain harmful viruses that could infect your device.
- Do they ask for sensitive information? If a site you have entered asks you for unusual and private information, most of the time, a hacker is behind it all. DO NOT ENTER YOUR INFORMATION. Just think, a real company site would not ask you for sensitive information out of the blue.
- Are the images too blurry? Low-resolution images can raise red flags for users when they enter a site. Many times, cybercriminals do not pay too much attention to details on their fake websites.
Let us help you!
Cybercrime is at an all-time high, and hackers are setting their sights on small and medium businesses who are “low hanging fruit.” Don’t be their next victim! Click here to download this free report that reveals the most common ways that hackers get in and how to protect yourself.
We work 24/7 year-round to ensure that your business does not fall prey to data breaches. For more information on how your business can best be protected, schedule a FREE 2-hour assessment with Captain IT by filling out the form linked.