Today every other online banking website features the anti-phishing tips page intended to teach an ordinary computer user how to fight those annoying emails collecting your personal data. While this educational initiative is praiseworthy, many of the tips, and some of them originate from security experts, are in fact questionable, incorrect, or misleading.
This article debunks the most common myths. At the end of this page you´ll find a couple of tips that will help you correctly identify both valid and impersonated websites.
Secure, encrypted web page indicates a valid website – Contrary to a popular advise, never rely solely on “https://” prefix or padlock icon that indicate a “secure” page. It is possible for a phishing website to have a valid SSL certificate. You might want to check certificate details to see if the “Common Name” field of the certificate matches the host name of the organization´s website, but it requires some level of technical expertise.Read Full Story