Security is a big part of the financial and crypto industry. With multiple news outlets and social media platforms mentioning numerous "hacks" for crypto based businesses.
We at CoinMetro believe that most of these "hacks" could have been avoided with simple security steps for the users as well as for any stakeholders.
What we watch out for:
Emails- the most popular way where people try to get some of your information, money or access is through email.
We have all seen at least 1 scam/phishing email in our lifetime. The premise is the same, it is either misinformation, threats or a proposal that sounds too good to be true.
From impersonating support personal to governmental institutions, these individuals or systems will use any type of means to give them an edge on you, the user.
In the end they will always ask for something, it might be something trivial as to click a link to disclosing your account passwords and credit card numbers.
The remedy is quite simple- file a spam alert for said email, file a report if possible, delete the email. It is that easy. Most of these cases are solved by just using common sense.
They try and target trusting and gullible people, especially older age individuals and if they can succeed with 1 person out of a 100, that could be enough for them.
Phishing sites- this methos aims to redirect you to an exact site layout as you are intending to use, the site domain names are made in such a way where people make a mistake in spelling the proper website and are redirected to the "fake" site.
When you enter your credentials on such a site, they are in the hands of the domain creators and will most likely use this information for nefarious means. These domains live for a short period and are usually closed once enough people get their information leaked or untill it is shut down.
Be very mindful of what site you are entering, even one letter could redirect you to a miscellaneous site that is mascarading as the one you intended to visit.
Media messages- Quite similar to emails, a person will contact you or have an overall message promising something or asking for something. Again, common sense would eliminate being tricked by what would apear to some to be blatant fraudulent claims.
Risk could be that said people would disguise themselves as some people you might know, or use their media channels to message you and get some information like that.
Masking their usernames as officials of the forum, chat, server etc.
Same rules apply, block the user from contacting you, report the account and do not reply, open any links, download any files from such accounts. Always double check on why would you be asked to do something from said individual, even if he is you long time social media friend.
Malware/programs- this is one of the more flashier ways on how scammers try and manipulate you to pay, disclose information or get access to your information or systems.
There are quite some tested ways on how to get your PC/Browser/Device infected with miscellaneous programs or codes. Visiting unsecured websites, downloading infected files or attachments and running infected software.
The most common one is where your browser opens a page that will not let you access other pages or pop up every so often. It will have a threat that your PC is infected or you have illegal materials on your PC, and they will contact the authorities if you do not pay them.
It ranges somewhere in that range, a weird message and text telling you to pay because of certain reasons (usually all untrue).
Sometimes, thought infected programs they can have partial or even full access to your PC. Which enables them to see what you are typing to directly locking you out of your device and demanding money to unblock it.
The first two instances can be solved by resetting your browsers cache, the latter ones should be solved by contacting support of the afflicted OS, device or system.
More serious cases might involve your device being stealthily manipulated without you even knowing it, this can be mitigated by having the latest security updates for all your programs and a dedicated security/antivirus program to catch any dangerous threats.
For more information on this or any other aspects related to your information, security or privacy. Don't hesitate to contact us at CoinMetro support. We are always here for you.