Thursday, September 9, 2010

Know your Domains and URLs

One of the great inventions that made the Internet so accessible to the masses is the domain names and URLs, if addresses to where we needed to go stayed at their basic form of numbers I don't believe we would be using it as broadly as we do. URLs gave meaning to the links we use and made them easier to remember. I doubt anyone knows the real IP address of amazon.com, but we all know how to get there by using the domain name.

Since URLs are used by everyone on the Internet to take them to the desired location, it is important to know how to identify real and safe domains and how to identify fake domains that may pretend to be real and maybe used for phishing information.

An interesting article I found from the Information Technology Services department at Yale University, refers to this subject and stresses the importance of knowing where you click to ensure you are taken to the real amazon site for example and not some website that pretends to be amazon and will use the information you provide for identify theft and credit card frauds.

The article brings three good points that will help identify a fake URL :
  • The end of the URL is what matters the most
    • Accounts.amazon.com = Valid
    • Amazon.accounts.com = Fake
  • Beware of Internet IP addresses in URLs - criminals may use a raw IP address such as 122.334.2.18
  • Fake URL maybe disguise in a email link or a web page link - always hover about the link and look at the status bar to see where it really takes you
Avinash Rana, an independent blogger that writes mostly about Internet and technology wrote a recent blog about the very same topic. In his post he says it is pretty easy for a talented web-developer to make it seems like you are in a real website, therefore we all must pay attention to where we enter in the virtual world, especially if we plan to disclose any personal information that may be used to harm us.  

   

                   
Posted by Efrat Ardon at 8:03 PM
Labels: , , , , , , , ,

2 comments:

  1. Siva's BlogSeptember 13, 2010 at 9:51 AM

    Hi Efrat,

    You have posted an interesting article. Phishing is very common nowadays and unfortunately I was one of a victim recently. Few weeks back I was trying to log in to my Amex account. After entering my credentials, I got a pop up which looked exactly like Amex website and asked about my SSN and complete credit card number. It was mentioned that it’s a random verification for security purpose. I did give all the info. After some time, I was trying to log in to Chase account and I got a similar pop up. Then I realized that this is some kind of phishing and immediately called one of 3 credit union and put an alert on my profile.

    Thanks

    Siva

    ReplyDelete
  2. Efrat ArdonSeptember 13, 2010 at 12:39 PM

    Thanks for being first to comment.

    The only problem I had so far was a charge on my phone bill for some e-fax service that I apparently registered for with no intention. It came from some website I registered for and had to provide a phone number. Since then I'm more careful providing personal information.

    ReplyDelete

Subscribe to: Post Comments (Atom)