Phishing is a type of online fraud in which criminals impersonate a trusted organization. Their goal is to trick you into clicking a link and entering your username, password, or other personal information on a fake website.
By staying alert, you can usually recognize phishing attempts before they cause any harm.
How to recognize a phishing email
Watch for the following warning signs:
The email starts with a generic greeting, such as 'Dear User'.
The sender uses an unfamiliar or suspicious email address.
The email contains spelling, grammar, or formatting mistakes.
It creates a sense of urgency and pressures you to act immediately.
Links point to an unfamiliar or suspicious website.
Never click on a suspicious link or enter your login details if you have any doubts about the authenticity of an email.
Example
Below is an example of a phishing email received by one of our customers. The sender's email address and the link are clearly incorrect. The link directs you to a fake login page that closely resembles the login page of our booking system.
How to recognize a fake website
Check the URL
Always check the website address in your browser before signing in. The official login page for our booking system always starts with: https://app.recranet.com
Examples of legitimate URLs include:
Fake login pages
Phishing websites often look almost identical to the official website but are designed to steal your username and password. Always verify that the URL is correct before signing in.
Protect your account
You can significantly reduce the risk of phishing by following these best practices:
Only sign in through the official website.
Carefully check links before clicking them.
Never enter your password through an email or on an unfamiliar website.
Enable Two-Factor Authentication (2FA), preferably with an authenticator app, for an extra layer of security.
For more information, read our article Secure your account with two factor authentication (2FA).

