Cyber Actors Exploit ‘Secure’ Websites In Phishing Campaigns

Just because you see the green lock and “https” in the URL does NOT mean it’s 100% secure. Always take precautions when visiting sites from emails, popup ads and texts.

Hackers are employing fake SSL certificates to make a site appear trusted – allowing it to show “https” in the URL and display the green lock, giving the false impression it’s a safe and trusted site.

The following steps can help reduce the likelihood of falling victim to HTTPS phishing:

• Do not simply trust the name on an email: question the intent of the email content.

• If you receive a suspicious email with a link from a known contact, confirm the email is legitimate by calling or emailing the contact; do not reply directly to a suspicious email.

• Check for misspellings or wrong domains within a link (e.g., if an address that should end in “.gov” ends in “.com” instead).

• Do not trust a website just because it has a lock icon or “https” in the browser address bar.

FBI Public Service Announcement June 10, 2019:

Source: Internet Crime Complaint Center (IC3) | Cyber Actors Exploit ‘Secure’ Websites In Phishing Campaigns

Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.