version 26.6.3 · Self-Help · Printing~3 min read

Spot phishing before it steals your login

Most account takeovers start with a convincing fake email or text that walks you to a fake login page. Learning the tells is the cheapest protection there is.

  1. Be suspicious of urgency and threats — account suspended, payment failed, act now — which are designed to rush you.
  2. Hover over links to see the real destination, and never log in via a link in an email or text.
  3. Go to the website directly by typing the address or using a saved bookmark instead.
  4. Check the sender address carefully, as scammers use lookalike domains a glance can miss.
  5. Never enter a one-time code or password on a page you reached from a message.
  6. If unsure, report it to Scamwatch at scamwatch.gov.au, and tell whedo.it if it targeted a work account.

Still stuck after those?

You’ve done the right thing by trying. Send whedo.it a quick note — what you tried, what you saw — and a senior pair of eyes will be on it the same business day.

+61 421 346 887
5.0
★★★★★ on Google · loading…
Read all on Google →