Protect assets from phishing attack

What is phishing attack?

The phishing attack is the most common way to hack the user account. Today, lots of attacker prepare the the phishing mail, SMS, and sites for hunting the valuable target. To against the phishing attack, let’s do something before the bad things happened!

How to protect assets from phishing attack?

  • Think Before Open Unknown File/App
    Some of the phishing attack using crafted file, malware, or spyware to steal your assets. To avoid attack, you should double confirm the source of file/app and do NOT download app from non-official sites. In the meantime, you should keep the version of application, browser, operation system and anti-virus/IDP up-to-date.
  • Think Before Click URL
    First, do *NOT* open the short URL if you are suspicious of a URL. Be clear about the destination when you must use short URLs.
    Second, check the real address/domain of URL. For example, in http://www.maicoin.com.evilphisher.com/, the site you’re actually on is actually evilphisher.com.
    Third, confirm the URL is www.maicoin.com and max.maicoin.com or not again. In the end, if you enter to the suspicious site DO NOT FILL IN ANY INFORMATION.
  • If you don’t know how to check, you can choose the easier way to prevent this by using Chrome/Firefox browser(Safe Browsing is enabled by default) with NetcraftAvast, or BitDefender extension/AddOn. Those browser/ extensions will avoid you entering the phishing sites with an eye-catching alert/warning.
    If you want help the safe browsing project you can report the phishing site use the Google Suspicious Site Reporter.

Phishing Samples

Malwares
Fake Electrum wallet
https://twitter.com/ElectrumWallet/status/1078319006862454785
https://cointelegraph.com/news/users-of-crypto-wallets-electrum-and-myetherwallet-face-phishing-attacks
Fake wallet apps
https://ethereumworldnews.com/fake-mobile-cryptocurrency-wallet-apps-found-on-google-play-store/

Fake Sites

fake site with wrong URL
  • www[.]maicoin-tw[.]com
  • www[.]tw-maicoin[.]com
  • www[.]maicoin[.]cc
  • www[.]maicoins[.]com
  • www[.]maicoin[.]com[.]mx
  • www[.]maicoin[.]in

Google Search Keyword Phishing

non-official google advertisement

Facebook Fake Fan Page

Facebook Fake Fan Page

Report Phishing Attack

If you discover the phishing site, mail, and others suspicious things of MaiCoin. You can report to security@maicoin.com.


All links to third-party websites are for convenience and informational purposes only. MaiCoin is not responsible for the content of any Third-Party Site.

分享在 facebook
Facebook
分享在 google
Google+
分享在 twitter
Twitter
分享在 linkedin
LinkedIn
分享在 pinterest
Pinterest
%d 位部落客按了讚: