Anti-Phishing Tip #4
Check for Trash Before the Slash
Verify "https://DROPBOX.COM/" Before Entering Credentials
THE TRAP: You are asked to enter your Dropbox, DocuSign, Outlook, GoogleDocs, etc., on what looks like the legitimate login page.
YOUR DEFENSE: Always check the actual URL to make sure it starts with "https://login.microsoftonline.com/". Trusted login pages will never have anything phishy BEFORE the first single slash. Fraudulent login screens designed to steal your credentials may LOOK authentic if you're not paying attention to the URL.
Good Example: https://login.microsoftonline.com/common/
Bad Example: https://login.microsofftonline.webs.com/common/
Also check for the Extended Validation Certificate in the address bar.
Look for a long green bar with a padlock followed by the company's name.
Remember: Only You can Protect Your Password!
Not sure if it's a phish? Drop us a line. Send email to firstname.lastname@example.org.