the Blog

Let’s go Phishing!

Posted on May 15, 2014 by Michael Rosario  |  Comments

Actually, let’s not. It’s not a ghetto word for fishing - not even related to fish. It’s an online form of identity theft.  According to Wikipedia, phishing is an act of attempting to acquire sensitive information such as usernames, passwords, social security numbers, and credit card details by masquerading as a trustworthy entity in an electronic communication.

So how does one identify a Phishing scam or hoax site? First of all, be careful of what type of information is publicly available about you.  Credit cards for example, use the following popular questions to retrieve your forgotten passwords - “What’s your mother’s maiden name?” or “What’s the name of your first pet?” These are common questions and may easily be discoverable on your facebook or social media profile.

When providing sensitive information, make sure the URL is the correct address on your browser. Remember is correct while is a totally different site.  They may look the same, but one is potentially a Phishing site.

Second, when providing information such as Credit Cards or Social Security number, don’t just check the address bar, but make sure that the site uses a Secure Sockets Layer (SSL) - basically the address starts with https:// and has a symbol of a padlock.  For more information go to

Just to recap, here are the points:
1. Be aware of what information about you is available to the public.
2. Check the address bar for the correct URL
3. Make sure it’s a secure site - using https:// not http://

So what do you do if it’s a phishing, scam site?  The next best thing to do is to report it.  There are many ways to report a bad site.

Phishing Scam Warning

You can report to the government:

Report it to Google:

You can also look up the owner of the site at then you can contact them directly or you can report them to their hosting provider, on the whois report, there is an abuse email address that you can send your complaints to.

Hopefully that helps and be careful out there.  If you are a victim of phishing, it’s best to change your password(s) and update your profile so that they cannot access your account.

comments powered by Disqus

Other Recent Blog

What do I need to be a Web Developer?
Posted on November 8, 2017  |  Comments I was asked recently asked by a college student what he needs to be a "Web Developer." If I were to sum it into one blog entry, it would be a mix of the tools I use, best-practices and the coding languages that I know. It's never to late to learn how to code and learn new tools. Once you have an idea on the basics - it's never too far to learn another. Every single thing online has documentation, youtube videos, and wikis readily available. There are a lot of tools out there and a lot of developers willing to share their two cents on forums and social media.