Just because you see the green lock and “https” in the URL does NOT mean it’s 100% secure. Always take precautions when visiting sites from emails, popup ads and texts.
Hackers are employing fake SSL certificates to make a site appear trusted – allowing it to show “https” in the URL and display the green lock, giving the false impression it’s a safe and trusted site.
The following steps can help reduce the likelihood of falling victim to HTTPS phishing:
• Do not simply trust the name on an email: question the intent of the email content.
• If you receive a suspicious email with a link from a known contact, confirm the email is legitimate by calling or emailing the contact; do not reply directly to a suspicious email.
• Check for misspellings or wrong domains within a link (e.g., if an address that should end in “.gov” ends in “.com” instead).
• Do not trust a website just because it has a lock icon or “https” in the browser address bar.
FBI Public Service Announcement June 10, 2019: