These days, cybercriminals pick targets for phishing attacks like it’s point-and-kill. The worst part is that 50% of the targets click on phishing links within the first hour of being sent. It can happen to anyone. Picture this scenario:
You’re at work minding your business. You can’t wait to go home and eat that jollof rice you’ve been thinking about all day. Suddenly, you get an email from “Japa to Canada” saying you’ve won a free opportunity to get your Canadian visa. Only if you click the link attached.
You click on the link and continue thinking of jollof rice. Two weeks later, someone hacks your bank account and transfers all the money out. Remember that Japa to Canada email you clicked? It was a ‘phishing’ email and now you are sad?.
What is Phishing?
Phishing is a method that cybercriminals use to access your device and information. They can pretend to be an employee at a reputable company you use, your coworker, or anyone else.
Their aim is to trick you into clicking on a link that downloads a virus on your computer. Such people can target your crypto wallet and try to steal your private keys or crypto exchange login details. You know it’s Bitcoin season?. Please be on the lookout.
Types of Phishing Attacks
Knowing the different phishing techniques will help you protect yourself from these attackers. Some of the most common techniques are:
- Email Phishing, in which attackers send out emails to as many as thousands of people. The goal is for several people to fall for the scam. They use the logo, and signatures of real organisations to make you believe that the message is authentic.
- Spear Phishing, in which they use your personal information to target you. Since they know some of your personal information, they can pretend to be from your bank.
- Whaling, in which attackers target high-level people in an organisation. They look for the ‘ogas at the top’ because they can authorise certain transactions.
- Clone Phishing, in which attackers clone a message you’ve received before from a reputable person or company. They make it seem like the new email is an update for the last one and attach a link for you to click.
How to Protect Yourself from Phishing Attacks
1. Check the Email Address
Phishing emails tend to have suspicious email addresses if you check. Authentic emails use company addresses. For example, emails from Quidax will always end in “@quidax.com”.
2. Check for Threats and Urgent Deadlines
Phishing emails usually sound urgent because the attacker needs you to take action quickly. This action could be clicking on a link or sending some personal information.
3. Check that You’re Visiting the Correct Website
Some sites are designed to steal your personal information. Always check the link (URL) of the website you’re visiting. For example, the link for the Quidax homepage is https://www.quidax.com.
4. Check for an SSL Padlock ?
Sites that have a padlock by the side of the URL in the address bar are more secure. The links also start with ‘https’, not just ‘http’.
5. Use Different Passwords for Your Accounts
We know sometimes you just want to sign up quickly and go. But don’t use passwords like ‘+234’, or your birthday ?. Always use strong passwords and make sure each account you have has a different password. This makes it difficult for attackers to get your personal info in phishing attacks. We also recommend using a password manager so that you don’t get your passwords mixed up.
6. Enable 2FA Anywhere and Everywhere
Two-factor authentication (2FA) is your best friend. You can find it in the security settings of most credible apps. Enable it for your Quidax account, Facebook, Twitter, and everything else. Anyone who wants to steal your information will find it difficult to get past your 2FA. Don’t make it easy for them.
7. Never Give Out Your Password or 2FA Code
Don’t give your account password or 2FA code (if you have one) to anyone. Reputable sites don’t need to ask you for these things before helping you with your account. Quidax will never do that too. So if anyone says they want to give you money or help you if you send your password, don’t do it.
8. Report any Suspected Phishing Attacks
Finally, if you come across any suspicious emails concerning your Quidax account, please forward them to [email protected]. Wait for a response and don’t click on any links you’re not sure of.