23 thousand dangerous websites – watch out for them

Together with NASK PIB, UKE prepared a list of the most dangerous websites on the Internet. It is constantly updated. Everyone can report a suspicious domain or a fake SMS. How to do it?

Cyber attack – are we ready for war against ransomware and hackers?

One of the most popular activities of cybercriminals are phishing sites that provide personal information, credentials for bank accounts or social networks. Links to such sites are sent through various channels: SMS, email or via social media.

In order to warn users against fraudulent websites, including fake ones, a list of warnings against fake websites was launched last March in cooperation with NASK PIB, UKE and telecom operators.

To date, almost 23,000 addresses have been included on it. The list is publicly available.

– Websites phishing for data or money are placed on it. Each report is verified by CSIRT NASK. When suspicions turn out to be true – the website is put on the warning list, users are warned against entering it and operators may restrict service of such website. In some cases law enforcement authorities are also notified – prosecutor’s office and police – explains minister Janusz Cieszyński, government plenipotentiary for cyber security.

How do cybercriminals work?

To steal from us cybercriminals grab different ways. The most common method is called phishing. It’s no coincidence that the name phishing is reminiscent of fishing. Criminals, just like anglers, use appropriately prepared “bait”.

Phishing is one of the most popular types of attack based on e-mail or SMS messages. Cybercriminals use a well-known technique which is supposed to make us take actions in accordance with their intentions. That’s why they tempt us with sensational titles, supposedly unique offers, or promotions that will never happen again. At the same time they are ruthless. They often impersonate for example courier companies, offices, telecommunication operators or even our friends. More and more often they use communicators and social networks for this purpose.

– Cybercriminals are constantly on the prowl for new ways to trick us or to get our money or data. That is why we also have to be constantly vigilant. Let’s verify information, let’s not act on emotions, and if we are sure that we witness a crime, let’s report it. It is enough to go to https://incydent.cert.pl and fill in the form available there – advises minister Janusz Cieszyński.

How to take care of your own cyber security

– Carefully check the appearance and address of the page (at first glance it may not differ from the official one, but it is enough to look closely to find, for example, a small typo), where you enter login data, personal information or payment card.

– Don’t act under time pressure, watch out for emails, text messages, websites, apps and phone calls that urge you to act immediately.

– Beware of sensational messages, sites that require extra login, including those shared from friends’ social media accounts.

– Verify sources of information before acting on or replicating it.

– If you are not sure that a piece of information is genuine – contact the alleged sender through another known channel and/or seek confirmation of the information from other sources.

– Report to the NASK CSIRT any suspicious website, as well as e-mails and text messages that may be phishing.

How do I report a suspicious site?

Who can report a suspicious site? Anyone. It is enough to fill in an online form.

Krzysztof Silicki: Attacks are continuing all the time

An SMS message containing a link to a suspicious website can be sent to 799 448 084 using the ‘forward’ or ‘share’ function in your phone. Such a report will be sent directly to the analysts of CSIRT NASK, who will decide to add the suspicious domain to the warning list. From one number you can report maximum three messages within 4 hours.

Like this post? Please share to your friends:
Mobile Pedia