A message from a "friend" on social media: "Vote for me in this contest via this link…"? Be cautious—you might be a phishing target.
Phishing (from "fishing")—a type of online fraud aimed at stealing confidential data like logins and passwords.
Why does it work?
Scammers avoid hacking—they exploit social engineering.
Social engineering—psychological manipulation to trick users into harmful actions.
Cybercriminals target the weakest link: us. Why hack systems when users willingly hand over passwords?
Common scams
Clickbait
"I LOST WEIGHT USING…"
"GIANT SNAKE EATS…"
"THE WORLD ENDS TOMORROW…"
Tempting to click? These headlines lure you to malicious sites that steal data or infect devices.
Contest scams
Example scam message:
"Vote for me in this contest," says a "friend." You help, log in via a fake page, and boom—your credentials are stolen.
How? The URL changes subtly during redirects. Compare the fake login page to the real one:
How to spot fake contests?
- Verify with the sender via another channel.
- Watch for suspicious URL changes.
- Avoid entering data on dubious forms.
- Change passwords if you suspect a breach.
Extra precautions:
- Use antivirus software.
- Install an ad blocker to stop malicious ads.
- Stay skeptical—think before clicking.