How to detect suspicious links and safeguard yourself

URLs have become an everyday part of life. But, despite using them numerous times, do you know that a URL is made of multiple components and paying attention to them can save you from being scammed?
URLs or Uniform Resource Locators are the web addresses that you use to access a website. A URL has three key components - 

• Protocol, like ‘http’ or ‘https’
• Domain name, like ‘hdfcbank.com’ 
• Path, like ‘/homepage’  

Together, these components make a URL. The simplicity and usability of a URL have provided scammers with an opportunity to conduct scams. Such frauds are typically called phishing attacks and involve fraudulently impersonating a legitimate business or organisation.
Scammers use similar-looking URLs which you might overlook and end up providing them with your sensitive information. But, by staying vigilant, you can always outsmart fraudsters and prevent yourself from being a victim.

This article will tell you how you can stay informed and what security tools you can use to reduce your risk. As U-R-Losing, if you don’t pay attention to URL details!

How to stay informed

No one can deny the importance of identifying red flags at an early stage. By staying informed and proactive, you can significantly reduce the risk of being scammed. The following are some tips that can help you identify a fake URL - 

• Read the domain name properly: URL-related scams typically happen via phishing. This involves creating fake URLs that look similar to the original one. Scammers also build a similar-looking website on these fake URLs that resemble the original branding and theme to dupe you further. It is important to note that the link shared by HDFC Bank will always start with hdfcbk.io
  If you happen to be unsuspectful and provide your details without verifying the authenticity, then you are likely to be scammed. By thoroughly reading the domain name, you can potentially identify a fake URL and safeguard your interests.
  While reading the domain name, you should always look for misspellings, different wording, etc., to verify the legitimacy of the URL.
• Beware of long URLs: All companies and organisations typically use simple and short URLs to make them easy to remember and access. Hence, you should be extra careful with URLs that look over-complex, are lengthy, have multiple special characters or sub-domains, have longer paths, etc.
  Scammers try to make their fake URLs as complex as possible to make them look more authentic and reduce the chances of being caught by the users.
• Review the protocol: The protocol of a URL is often overlooked by many. It is an important safety feature that can enhance your privacy and help identify fake URLs. All the URLs either begin with ‘http’ or ‘https’. The ‘s’ in the latter stands for ‘secure’.
  URLs with the ‘https’ protocol are equipped with data encryption to protect transmission and increase privacy. Scammers can also create fake URLs based on the ‘https’ protocol but be extra cautious while dealing with websites that begin with the ‘http’ protocol.
• Stay updated: Scammers are constantly changing the way they operate. You must know the latest scam techniques to save your interests. HDFC Bank Vigil Aunty can help you keep informed. She tells you about the latest scams, how to prevent falling victim to them, and what to do if you become a victim.

Using security tools to reduce the risk of scam

Apart from being vigilant, you can also use multiple tools and techniques to reduce the risk of being scammed by a fake URL. The following are some tools and techniques that you can use - 

• Scanners: With the increase in URL-related scams, the advent of tools to identify fake URLs has also been on the rise. Numerous online tools and extensions can now help you identify and verify the authenticity of the URL. Some of these scanners can warn you even before you visit a fake URL!
• Updated browsers: The web browsers you use to access the internet are also equipped with built-in security mechanisms. Keeping your browsers updated can help you make use of such security mechanisms.
  This can further aid you in identifying phishing URLs and prevent you from accessing them.
• Antivirus software: Nowadays, the majority of the antivirus software available has the capability to identify fake URLs. You can install such antivirus software on your laptop, mobile phone or any other device you use to access the internet. 
• Caution: Exercising utmost caution can be the most important technique to prevent fraud. You should always remain extra cautious while clicking links from an email or message.
  Scammers often send emails and messages with fake URLs by promising lucrative offers, assistance, information, etc. Always double-check emails received from unknown senders and stay cautious of their authenticity.
• Two-factor authentication (2FA): It is an extra layer of security that can help prevent unauthorised access to your account. Apart from entering your PIN or password, you must also enter an OTP or token to log into your account.
  By enabling 2FA wherever possible, you can reduce your risk of being scammed. Even if you unknowingly provide your details to a scammer, they will still be unable to access your account without having the OTP or token!

Always take that extra minute first to read the URL properly and ensure its legitimacy. You can always equip yourself with multiple security tools to help you identify fake URLs. By using options like 2FA, you can prevent fraud despite having unknowingly shared your sensitive information.

Join Vigil Army, where Vigil Aunty will decode various frauds and give people a heads-up on the dos and don’ts of combating frauds online. To join the Vigil Army, send ‘Hi’ to her via WhatsApp number 7290030000.

Disclaimer: The appearance of Vigil Aunty's bindi has been refreshed with a change in color from red to blue for a distinctive look.