In digital times, email has become an indispensable part of daily work and life. As cyber criminals continue to find new ways to trick crypto traders into revealing personal data, it's more important than ever to learn how to recognize phishing Emails.
Purpose of phishing emails
Phishing emails are one of the most common cybersecurity threats, which often come in the falsified excuses of: abnormal account, risks, or unfreezing account; platform migrations or upgrades; withdrawn account; IP switching; airdrop activities; promoting overseas account; account synchronization to global or financial management etc., to "fish" for personal data. Please beware of phishing schemes, do not click on unknown links, or disclose verification codes and other account personal data.
Characteristics of phishing emails
1. Mismatched Email domains
Most companies use their exclusive corporate email domains. For example, legitimate emails from Google will use the domain name "@google.com". However, phishing scammers often use public email domains like gmail.com or yahoo.com to send fraudulent emails. If an email claims to be from a reputable company but uses a public email domain, it's highly likely a scam.
Additionally, be careful with subtle misspellings in the domain name. Phishing emails may contain spelling errors or slight variations that can be easily overlooked. For instance, scammers may replace the second "o" in "microsoft.com" with the number "0", or use a "rn" combination to mimic an "m".
2. Request for sensitive data
Be vigilant when receiving emails from unknown senders that request sensitive data, such as login credentials, bank account details, etc. Scammers can create authentic-looking login pages and send emails with links to fake pages. If you're redirected to a login page, do not enter any information, unless you are absolutely certain that the email is legitimate.
3. Suspicious links or attachments
The primary goal of phishing emails is to lure you to a scam site that's designed to steal your personal data. Usually, scammers use shortened URLs or embedded links to disguise the true destination site.
To avoid falling victim, always double check email links before clicking on them. One way to check is to hover your mouse over the URL or linked text to see where it directs you. If the link looks suspicious, it is always best to verify its authenticity before clicking on it.
Phishing emails may also include attachments that contain viruses or malware that can harm your computer or steal personal data.
4. Generic greetings
An organization that works with you should know your name. If the email starts with generic greetings like "Dear sir or madam", or uses words like “customer”, or “account holder”, it is most likely a phishing attempt, rather than a legitimate email.
5. Spelling or grammar errors
If an email message has obvious spelling or grammatical errors, it might be a scam. These errors may occur due to a poor translation from a foreign language, or they might be intentional to bypass your email inbox's security filters.
How to prevent phishing emails
1. Do not click on unknown links or attachments in emails.
2. Do not disclose account information, including account name, password, mobile phone/ email/ verification code /TOTP and other personal data.
3. To protect yourself from fraud or phishing scams, if you notice any suspicious websites, emails, telegram, etc., please visit CoinEx official verification channel for verification.
Notes
1. Even if the source address is verified, it could still be a scam. Scammers often use advanced techniques to forge sender addresses and impersonate trusted ones. Their goal is to deceive you into clicking malicious links or downloading malware, thereby taking over your online account or stealing your assets.
2. To protect yourself from fraudulent emails, it is recommended to set up anti-phishing code. After receiving the email, always check if it includes the anti-phishing code and ensure it matches the code you have set.
3. If you have any doubts about the security of an email, please contact CoinEx Support to submit a ticket and provide a screenshot of the email for verification. CoinEx Support will verify its authenticity.