Phishing sites are fake websites that mimic real sites to trick people into disclosing usernames and passwords. To try and drive you to these sites, scammers use generic email with web links included.
But there are obvious clues to look out for. For example, there is often a super urgent call-to-action designed to scare you into clicking a link.
Normally, in the past, it’s been possible to identify these fake sites by their URL or domain name, which often differs slightly to the real web address. But now that's all changed. It’s recently come to light that scammers are now using a new technique (known as a ‘homograph attack’) to create fake sites that appear to show the correct address.
How to Avoid Phishing Sites
be wary of emails asking for confidential information;
only visit sites from your own bookmarks or by typing the URL directly into the browsers;
never click a link in an unexpected email;
mainstream browsers have free add-ons that can help you detect phishing sites;
don’t feel pressured into giving out your username or password.