Good morning everyone! I hope all is well with you.Today we are going to talk about phishing and how to avoid being a victim of attack.

First of all, I wanted to say that I'm on the subject, I studied a lot about phishing and cyber attacks and how to avoid them, how hackers think, how they will act, "plan B" if A does not work.

This post is not only for new users, it is also for users who do not have experience in cyber attacks.


I am doing this post in order for the community to be aware of these attacks and to be vigilant in case of any attempt on the part of the hacker. This post has no tendency to profit, just inform the community for better stability. Any upvote or comment will be appreciated.



First of all...

What is Phishing?

Phishing is an online fraud technique used by criminals in the computer world to steal bank passwords and other personal information, using them fraudulently.

A phishing attempt can happen through websites or fake emails, which mimic the image of a famous and trusted company in order to catch the attention of the victims. Website content or phishing emails usually promise exorbitant promotions for the web user

The most inattentive and uninformed Internet user, when he falls into this trap, is redirected to a web page similar to the original company or bank, where he must inform his personal and banking data. The victim thinks he is only confirming his information with the bank, when in fact he is sending all the data to a criminal.


Keylogger

Keylogger is a malicious spyware type software whose purpose is to record everything that is typed, almost always in order to capture passwords, credit card numbers. Many phishing cases, as well as other types of virtual fraud, are based on the use of some type of keylogger, installed on the computer without the victim's knowledge, that captures sensitive data and sends them to a cracker who then uses them for fraud.


Now that we know the most common cyber attacks let's see how to avoid those.


1- Antivírus

Security software will identify and stop phishing attacks before it can be harmful to your machine. Therefore, it is recommended that users of all experience levels have an antivirus running on the PC. An example is Kaspersky that protects your computer from the most different threats with different security engines.

I know it's a paid Antivirus, but if you want quality , you gotta pay for it right?

2- Be suspicious of e-mail links

Even if you receive an email that you feel is very reliable, keep in mind that successful phishing attempts are made every day because inattentive users report their login to fraudulent sites. So stay tuned and be as careful as possible.
Most of them are really dangerous and can even destroy ur PC not physically but on the inside of the disc. If he get access to your system it's over, he can delete all of your files and only formating pc again will work so be carefull.

3- Avoiding Fake Promotions by consulting Official Telegram of SCORUM

If you see some promotion or some SCR giveaway from the SCORUM administration, you are always sure that it was on their part, to check, access the original Telegram of the scorum, here is the link ( https://web.telegram.org/#/im?p=@SCORUM )

If it seems very good to you, never believe neither the first nor the second time, make always sure you are following the right link. And if you see a suspicious link, report right away to the adminstration of scorum so we can take the site down.4 - Never trust on Https sites.

4 - Never trust on Https sites.

If you see that the site is "secure" with https, never trust it, because if you do not know, you know now, anyone can do this to make the site appear more secure and reliable, SSL is free and cloudfare resources.

5 - Fake personating

Under no circumstances, you can change your password, except it is requested by the SCORUM admins but this can easily be verified, once again by the Telegram of Scorum, each admin has "Name" + "Admin", admin no longer belongs to the name.

They will only ask for your password to be changed if you have already being scammed once.


I've created a phishing image just to you see how it works, i am not going to explain how to do it, so i would be encouraging people to do it.

I do not want to say much more about this, otherwise it would be worse for the community , but this is just a fake paypal page, after logging in with the data, the page says it crashed and automatically is directed to google, saving the data in a .txt file in computer or in Painel of the Phishing site.



                                                   IMPORTANT!!!

I'm not a phisher ! I do not have any records in this type of attacks, I just studied enough how to prevent and detect the user's IP, in order to be sued to the authorities for phishing and fraud of data.Before I studied Fitness and Health, I was in a cybercrime course where I learned a lot, although I did not pursue it because my passion was really in bodybuilding.

-----------------------------------------------------------------------------------------------------------------------------------------------

As I said above, this post does not have any tendency to profit, but if you want to give your suport giving upvote and commenting, I was grateful. Have a rest of a good day and do not forget, just trust yourself. The world of the internet is very dangerous.
For people who tend to comment in exchange for some value, I apologize, my SP value is still quite low but hey, we have to start somewhere, right?

-----------------------------------------------------------------------------------------------------------------------------------------------

Thank you all for reading, feel free to leave suggestions by commenting and upvote if you liked!

Cheers,

@andre2018 .