A domain name is your web address, the URL of your website and the basis for your e-mail addresses.
Get your website, web store or application online using our reliable and fast hosting.
Create a website or web store you will be proud of by yourself.
Work online without any problems thanks to your mailbox, the Office Suite, etc.
Powerful solutions to keep your website, shop or app online.
Tailored IT advice to improve your business and make it more successful. Whatever your needs, we will always find a suitable solution. From €199 per month.
Take advantage of being a Combell partner.
Making unsuspecting users believe they are dealing with a trustworthy entity in order to steal money or confidential information from them, or infect them with malware: this is, in a nutshell, what is meant by ‘phishing’. But what exactly lies behind this type of online scam? And how can you avoid falling into the trap of a phishing e-mail?
Basically, cybercriminals increasingly make use of phishing techniques because it is much easier to get people to click on a link than breaking into their computers. The attacker pretends to be a trustworthy entity, sometimes even someone you know, attempting to gain your trust. Therefore, the fake e-mail he sends you looks authentic; usually it even includes the logo of the real company he pretends to work for (your bank, a web store where you regularly shop…).
The attacker’s intention is to steal your confidential information (login, password, bank details…) or infect your computer with malware (spyware, keylogger, ransomware…). The e-mail may contain an attachment that you will open without a second thought. Or it may include a link, which redirects you to the fraudulent website of the company, where you will enter your login details without any suspicion.
Such a phishing e-mail was recently sent to Combell users. The link provided in this e-mail redirected to a very convincing imitation of the My Combell control panel.
The fact that you received a phishing mail does not mean the attacker got hold of your personal details by hacking the company of which he is misusing the name.
If you enter your personal details on such a fake website or control panel, the cybercriminal will be able to use them to access your online banking accounts, make purchases, etc. Your identity can also be used to commit fraudulent acts or scams, whereby the cybercriminal pretends to be you. In the case of the Combell phishing e-mail, the attacker would have been able to use your login details to log in to the My Combell control panel and access databases containing information about your users.
Incidentally, cybercriminals misuse virtually any means of telecommunication to launch their attacks (telephone, text message, social media, e-mail…). In this article, we will focus on e-mail, which is the most common method, but be wary of other means of telecommunication as well!
Attackers use all sorts of tricks to get hold of e-mail addresses of potential victims. Consider, for example, the publicly available Whois details related to domain names, the names and contact details of collaborators that are included on a company’s website, social media, etc. The Internet provides an astounding amount of personal information about many people, which is a real shame according to an increasing number of users!
However, e-mails are often sent to randomly generated addresses. You most probably already received a phishing e-mail from bank XYZ, with which you do not even have an account… However, we strongly recommend that you report any phishing attempt to the company whose name has been misused, and to SafeOnWeb.
Unfortunately, phishing e-mails are increasingly harder to spot. Often, they are exact duplicates of the e-mails you receive from legitimate companies, including the logo and all. And whereas previously you could effortlessly spot phishing e-mails just by looking at the poor English, it has now become quite a difficult task because of the improved language.
Cybercriminals use different techniques to fool you. In the first place, they use a fake sender address. This technique, called ‘spoofing’, is super simple. Anyone can indeed enter a fake sender name in an e-mail client.
There is no infallible way to find out who the real sender of an e-mail is. However, the route the e-mail took to arrive can provide you with an indication of the sender. You can find this route by having your e-mail client show all headers (please see our instructions for Thunderbird, Outlook, MacMail…).
You can also help by making sure that others cannot spoof your e-mail address. For this, you need to create an SPF record on your domain (please see: creating an SPF record).
Usually, the link included in a phishing e-mail is also perfectly hidden. Behind a seemingly harmless ‘click here’ button, the attacker can easily include the address of his bogus website. And even if a URL in mentioned in the text, the web address behind the link can be totally different. Even if the text says www.mycompany.be, for example, the link can still point to another address.
If you think you have received a phishing e-mail, check if the links included in this e-mail point to the website of the sender. If you have any doubts, you should enter the address yourself!
Be cautious with e-mails that ask you to log in to websites that store personal information about you. If you have any doubt, simply enter the address yourself! A healthy dose of mistrust can save you a lot of trouble!
Read more: Fallen into a phishing trap? This is how you can limit the damage.
Anyone who has ever read a newspaper is well aware that more and more criminals are prowling the Internet in an attempt to exploit vulnerable websites. That is why it...
DDoS attacks can cause major economic damage and completely shut down websites. What is a DDoS attack? How can you protect your website against DDoS attacks and what measures does...
As digital technologies evolve, hackers are enjoying more and more success. Nowadays, cybercriminals are using advanced methods to damage your company. A small mistake can have huge repercussions and, as...
© 1999 - 2021 Combell nv.All prices exclude VAT.
| General conditions