There have long been phishing scams that attempt to mislead you into entering your genuine password on a bogus website.
Regular readers of Naked Security know that taking safeguards like utilizing a password manager and enabling two-factor authentication (2FA) will shield you from phishing mishaps due to the following reasons:
This makes it challenging for password managers to unwittingly lead you to fraudulent websites because they are unable to fill up any information for you automatically when presented with a website they have never visited before. The password management won’t be deceived even if the phony site is an exact replica of the real one, with a server name that is nearly impossible to tell apart with the naked eye. This is because password managers are normally searching for the URL, the URL alone, and nothing else.
Whether they’re created by a mobile app, a secure hardware dongle, or a keyfob that you carry separately from your computer, the codes used by 2FA solutions normally only function once. Only knowing your passwordβor stealing, purchasing, or guessing itβis no longer sufficient for a cybercriminal
- -Criminals may get access to your sensitive information if they have full access to your social media accounts. Your risk of identity theft may grow if this information is compromised, whether they sell it on the dark web or misuse it themselves.
- -The ability to post through your accounts allows fraudsters to use your reputation to spread false information and news. Unless and until you can prove that your account was compromised, you risk being banned from the platform, locked out of your account, or in trouble in public.
- -The thieves can actively pursue your friends and family if they have access to your predetermined contacts. Not only are messages sent from your account far more likely to be seen by your own contacts, but they are also much more likely to be read carefully.