Phishing - The Confirmation Scam
Estimated time to read: 2 Minutes
Phishing scams are among the most dangerous and harmful scams on the Internet. The scammer has the goal to obtain your usernames and passwords.
Now imagine if a scammer got hold of your PayPal data, Amazon, eBay, Bank information and so on and on. Your financial life could be completely ruined only because of some *beep* scammer.
One of the more popular versions of Phishing is “Please confirm your details or else your account will be deleted”.
I actually saw this scam life in action (in my personal email box) and nearly fell for it, because it was so well done. But one thing rescued me, one thing that no scammer can change – the URL. I’ll explain it ↓
How the scam works and how to avoid getting scammed
1. You will receive an email that asks you to confirm your account information or else your account will be banned or deleted.
Note: The email address will look somewhat trustworthy, like “Amazon Support” but email addresses can be disguised very easily.
Moreover, the email design will look real. They copy the overall design and structure.
2. If you click on a link or button in the email you will be sent to the phishing page. If you are lucky you will see something like this:
This means that Google has already noticed that this website is a phishing site and warns you to enter it.
If not, you could see just a login field, that looks for example just like the Amazon login.
3. If you are so afraid that Amazon will “delete” your account and enter your Username and password, the site will most likely send you to an actual official Amazon page that contains some kind of error, so that you don’t notice so fast that you just got scammed. You sent them your login data.
The big question – how to know if the Login is official or not?
Take a look at the URL, always. For example, the official Amazon URL is www.amazon.com or .de or .es or in whatever country you use Amazon. and now compare the official with a scammers URL.
The same principle works for all big and important sites. Paypal, Google, Facebook, eBay and so on.
You should also know – no website like Amazon or similar will ever ask you unannounced to confirm your data. Never. The only time they will ask you such things are – confirm your email address if you just registered an account.