By Hetman Relay

What is phishing and how not to take the bait?

What is phishing and how not to take the bait?
Photo by Kaptured by Kasia / Unsplash

Imagine you are a fisherman. Now imagine that your login credentials, card numbers, and passwords are tasty fish. Hackers are the fishermen who cast attractive bait into the web, hoping that one of the fish will click on it. This "fishing" method is precisely phishing.

In this article, step by step, we will explain what phishing exactly is, how to recognize it, and - most importantly - how to effectively defend against it, so you can feel safe on the internet.

How to recognize a fake email? 5 Warning signs

Phishing most often comes to us via email, although it also happens via SMS or social media. Scammers impersonate a bank, the tax office, a popular service, or even a friend. What should you look out for? Here are 5 alarm signals:

  1. Strange sender address. Always check who the email is really from. The address will often be similar to the real one but with slight changes, e.g., support@amaz0n.net instead of amazon.com.
  2. Linguistic and stylistic errors. Official messages from large companies are carefully proofread. Lots of errors, strange phrasing, and chaotic construction are a red flag.
  3. Suspicious attachments or links. The biggest danger lies in links and attachments (e.g., PDF, Word files). Hover your cursor over the link (don't click!) to see the real destination address. It often leads to a page that only mimics the real one.
  4. Time pressure and threats. "Your account will be blocked within 24 hours!", "Update your data immediately!". This is a manipulation technique. Genuine institutions rarely operate this way.
  5. A Too-Good-To-Be-True Offer. You won an iPhone, but you didn't enter any contest? You're getting a huge tax refund? This is classic bait designed to evoke emotions and prompt you to act irrationally.

The consequences can be very serious. Clicking a bad link or opening an attachment can trigger one of these scenarios:

  • Theft of passwords and logins: You will be redirected to a fake login page (e.g., for your bank), where you will give the scammers your data.
  • Loss of account access: Scammers can take over your email or social media accounts and then use them to attack your friends.
  • Computer infection: A suspicious attachment can install malicious software (so-called malware) on your device, which will steal even more information.
  • Financial losses: If scammers obtain your bank account details, they can make unauthorized transfers.

How to defend yourself? Best practices

Your vigilance is the best shield. Here are some simple rules that will significantly increase your email security:

  • Always verify the sender. If in doubt, contact the company the email supposedly came from using the official phone number or address from your payment card, NOT from the message.
  • Never click on links or attachments from unknown sources. If your bank needs an update, it will most likely inform you after you log into your account through their official app or website.
  • Use strong and unique passwords. Use a different password for each account.
  • Enable Two-Factor Authentication (2FA). This is an additional layer of security that requires entering a code from an SMS or an app every time you log in from a new device. Even if a fraudster gets your password, they cannot log in without this code.

How does Hetman Relay help in the fight against phishing?

You already know that it's crucial not to provide your real data on suspicious sites. But what if a site looked credible and only later turned out to be a trap? This is where internet privacy protection using email aliases comes in.

Hetman Relay is an application that generates unique relay addresses. They act like virtual protective curtains for your primary email address. The true power of the relay in the context of phishing lies not only in hiding your address but in giving you context and immediate control.

We'll tell you about Tom, who defended himself against an attack in exactly this way.

A suspicious email and recognizing the scam

Tom received an email on one of his relays supposedly from his bank, informing him of "suspicious activity" on his account. The message looked authentic, but Tom noticed it came to an address he had never given to his bank. He checked in the Hetman Relay app what purpose that specific relay was assigned to. It turned out he had only used it for registration at an online store. He immediately understood it was a phishing attempt - his real bank couldn't know this address.

Taking control and verifying security

Knowing it was a scam, Tom disabled the relay in the app within seconds to prevent further phishing attempts to that address. He then logged into his bank account via the official website. Everything was fine - no suspicious activity. He could sleep peacefully, knowing that the scammers did not have access to his real email address.

A lesson for the future: The advantages of using a relay

Tom's story shows the key benefits in the fight against phishing:

  • Immediate Scam Recognition: By using a unique relay for the store, Tom immediately knew the email from the "bank" was a fake. It's like having separate keys for every room - if someone tries to open a safe with a pantry key, you know something is wrong.
  • Immediate Control and Zero Data Leak: When a relay leaks due to phishing or a data breach, you don't have to change your main email address. You just need to disable or delete that one, specific relay. The scammer loses contact, and your real address remains safe. Spam and phishing messages simply won't reach you.
  • Peace of Mind and Protection of Financial Privacy: By using different relays for different purposes (banking, stores, social media), you have full insight and control. You know who should write to which address, allowing you to instantly catch any irregularities.

Summary: Don't get caught!

Remember, phishing relies on causing panic or greed. Stay calm, be vigilant, and apply the principle of limited trust. Check senders, don't click on suspicious links, and protect your passwords.

If you want to easily increase your protection against spam and phishing, like Tom, check out Hetman Relay. Create your first relay today and regain control over your privacy on the internet. Your inbox will thank you for it.

Next

What is a relay? A simple guide to privacy protection