How to Check if a Link is Phishy

By Bob ThompsonTechnology

Phishing attacks are a growing threat to internet users in both the workplace and at home. Attackers often use malicious links to trick people into revealing sensitive information such as passwords, credit card information, or personal/work data. Recognizing whether a link is safe or not can be tricky, but with the right tools and awareness, you can significantly reduce the risk of getting attacked. Below you will find tips to identify malicious links, online tools to verify URLs, and security measures that will help prevent attacks in the future.

Physical Identifiers in URLs

Many phishing links appear to be legitimate URLs at first, but there are several signs that can hint at whether a link is truly safe.

  1. Suspicious Domain Names
    • Phishing links often use domain names similar to legitimate websites except with minor changes. For example, a link might replace a a lower case “l” with the number “1”, or a lower case “o” with the number “0”.
    • Another way attackers imitate legitimate websites is through subdomains. For example, an attacker might send http://secure-paypal.com.fake.com in order to make the link appear as if it routes to PayPal.
  2. HTTP vs. HTTPS
    • Always check if the link starts with https:// instead of just http://. The “s” in https indicates that the site uses secure encryption (SSL/TLS) to protect your data. While this is a good indicator for safe URLs, still be careful as experienced attackers can still use https.
  3. Unusual URL Length and/or Complexity
    • If a link appears to be too long or complex, this might be a sign of a malicious URL.
  4. Strange File Extensions
    • If the link ends in an uncommon file extension it could be a warning sign. For example, a URL leading to an .exe, .zip, or .scr file is an immediate red flag, especially if you aren’t trying to download anything.
  5. Link Shorteners
    • While not always malicious, URL shorteners like bit.ly and tinyurl.com can help hide phishy links. Make sure to double check the destination of the link before being redirected through a shortener, especially if they come from unknown sources.

Tools to Help Check URLs

If you end up coming across a URL that seems malicious, it’s always a good habit to double check. Here are a few online tools that can help verify if a link is safe.

You can also take advantage of tools that automatically check URLs while you browse. Chrome offers extensions such as Google Safe Browsing and Malwarebytes Browser Guard that will warn you if a website is known for malicious activity. Most antivirus software will include features like this as well, like Norton and Bitdefender.

How to Mitigate Attacks in the Future

Now that you have the tools to check if a URL is safe, here are some extra steps you can take to prevent attacks if you ever come across them.

  1. Enable Two Factor Authentication (2FA/MFA)
    • Protect your online accounts by using two factor authentication whenever possible. It might be slightly annoying taking the extra time to login, but it will help prevent headaches in the future.
  2. Keep Your Software Updated
    • Outdated operating systems, browsers, and antivirus increase susceptibility for attacks. Make sure you are always up to date on security patches.
  3. Use a Password Manager
    • Having a password manager is a very good habit to get into. If you use the same password for every account, it only takes one successful attack for all your online profiles to be at risk. Managers such as 1Password and Bitwarden not only protect your passwords, but also monitor the dark web for exposed information regarding login info.
  4. Educate Yourself on Recent Phishing Attack Methods
    • Understanding current phishing campaigns is the best way to avoid attacks. Phishing relies on human error, so if you learn to recognize the signs of phishing you can avoid falling for a scam.