Skip to main content

Recognize phishing emails and fake websites

Learn how to recognize phishing emails and fake websites to protect your login credentials and keep your account secure.

Phishing is a type of online fraud in which criminals impersonate a trusted organization. Their goal is to trick you into clicking a link and entering your username, password, or other personal information on a fake website.

By staying alert, you can usually recognize phishing attempts before they cause any harm.

How to recognize a phishing email

Watch for the following warning signs:

  • The email starts with a generic greeting, such as 'Dear User'.

  • The sender uses an unfamiliar or suspicious email address.

  • The email contains spelling, grammar, or formatting mistakes.

  • It creates a sense of urgency and pressures you to act immediately.

  • Links point to an unfamiliar or suspicious website.

Never click on a suspicious link or enter your login details if you have any doubts about the authenticity of an email.

Example

Below is an example of a phishing email received by one of our customers. The sender's email address and the link are clearly incorrect. The link directs you to a fake login page that closely resembles the login page of our booking system.

How to recognize a fake website

Check the URL

Always check the website address in your browser before signing in. The official login page for our booking system always starts with: https://app.recranet.com

Examples of legitimate URLs include:

Fake login pages

Phishing websites often look almost identical to the official website but are designed to steal your username and password. Always verify that the URL is correct before signing in.

Protect your account

You can significantly reduce the risk of phishing by following these best practices:

  • Only sign in through the official website.

  • Carefully check links before clicking them.

  • Never enter your password through an email or on an unfamiliar website.

  • Enable Two-Factor Authentication (2FA), preferably with an authenticator app, for an extra layer of security.

For more information, read our article Secure your account with two factor authentication (2FA).

Did this answer your question?