Quote:
Originally Posted by haertig
intentionally use an incorrect password[/i][/b].
|
that would helped you maybe 5-10 years ago to spot a phishing site, but not current ones. you would be amazed how hightech and deeply developed phishing pages got this days.
example:
- some phishing pages use leaked / hacked databases from websites and send such phishing emails to the emails from this database, and check if you input the password from this specific hack. if you input any other password, they tell you the password is wrong (but still log the password so they can try to login)
- a lot of phishing pages just give you a "wrong password" message or another kind of error so you believe something is wrong with your account.. doesn't matter what password you input
there are a lot of other tricks phishing pages use this days.. some of them even have call centers behind them who trick you into thinking you talk with the specific company. they sent you a email that tells you there is a issue with your account and to please log in.. and then tell you your password is wrong or similiar.. and you need to call them. the telephone number is then a scammer callcenter acting like they would be the support of the company.
so.. best you can do is just to go DIRECTLY and MANUALLY to the website of the account and login there. never follow any links in emails.. always go directly to the website and login there yourself. that way you are sure its not a phishing page & if there should be really something wrong with your account, you will see it anyway. and then you are safe that the support is real and not a scammer.