Phishing

From xat wiki
Revision as of 22:52, 26 December 2014 by FuzzyBot (xat.me/FuzzyBot) (Updating to match new version of source page)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Other languages:
Deutsch • ‎English • ‎Nederlands • ‎Tagalog • ‎Türkçe • ‎bosanski • ‎dansk • ‎español • ‎français • ‎italiano • ‎magyar • ‎polski • ‎português do Brasil • ‎română • ‎srpski (latinica)‎ • ‎српски / srpski • ‎العربية • ‎ไทย

Haben Sie jemals von jemanden gehört, der seine xats verloren hat oder dessen Konto übernommen wurde. Es ist wahrscheinlich, da dieser "Phished" wurde.

Was ist Phishing?

Phishing ist ein Trick welcher von Kriminellen benutzt wird um Ihre E-Mail Account und Passwort zu stehlen. Dies ist keine "Sicherheitslücke" und Sie werden nicht "gehackt". Es ist durchaus vermeidbar, indem Sie wissen worauf Sie achten müssen. Sie wurden wahrscheinlich bereits von Ihrer Bank vor Phising gewarnt wurden aber viele Benutzer denken nicht über Phishing bei Benutzung Ihres xats Konto. Auf xat werden die Phisher versuchen, Ihre xats, Ihre Tage, Ihre Powers, Ihre Identität und Ihr E-Mail-Konto zu stehlen.

Wie funktioniert dieser Betrug?

It starts with the person trying to phish you by making a webpage that looks just like the login page of the website you're trying to use. Then the phisher comes up with a creative way to get you to click on the link to that page, maybe saying you'll get free xats, days or powers. When you see the link and click it, you are presented with the fake login page created by the phisher. If you enter your info, you've been "phished" - you've fallen for the trick, and they've captured your username and password. The phisher will then login to your account and steal your xats, your days, your powers, your identity or your email account.

WICHTIG: Wenn eine Seite nach Ihrem E-Mail Passwort fragt, IST DIESE EINE BETRÜGER SEITE. xat wird Sie NIEMALS nach Ihrem E-Mail Passwort fragen.

Some sites may ask you to sign up for their forum or other features. If you use the same password as you have for your email account or xat account then they could use it to phish you. You should NEVER use the same password on your email account or xat account as you use for your login to ANY other site.

Scammers may ask you to give them a .sol file from your computer or have you download a sol editor and tell them the numbers, maybe by promising you will be owner of a chat or be unbannable. These numbers are your passcodes and should be kept secret. A scammer with these numbers could phish you. You should NEVER give secret files or passcodes to anyone else.

Wie kann ich mich selber schützen?

To make sure you don't get phished, you have to understand exactly how it works. When you click on a link in a chat box it may show the image below as a header to warn you not to enter your xat password on this new website.

Phish.png

Please do not always rely on this warning showing, as the linkvalidator system is not a perfect. We place every effort into make the system as effective as it can be.

Make Sure you Only Enter your username and Password on xat.com

There is only one easy way to know that you are at the real login page. That's by looking at your browser's address bar, the place you view or type in the URL of the website you want to visit. By looking there, you'll know what website you are actually on at the moment. For xat, the only page you should login to is "xat.com" or "m.xat.com". You may think you know exactly what the xat login page looks like and that someone could not trick you into typing your info into a fake page, but it is very easy to fall for this! It's also very easy for anyone to make an exact copy of the xat login page, or the login page of any website you use.

Your email password is only to log in to your email

xat will never ask you for your email password. Only use your email password to log in to your email. If a login page asks you for your email password it is not a xat page, it is a phishing page.

Turn on account locking

Account locking will increase the security of your account. See AccountLocking for details. Note that this is not a substitute being cautious to avoiding being phished (see above).

Use Different Passwords for Different Accounts

You should NEVER use the same password on your email account or xat account as you use for your login to ANY other site. If someone managed to phish your password on their site, they would have control of your email as well. Often this means they can access all your accounts on every site you use and it's more difficult to regain control of them again. If your email password is used on other sites, including xat.com, you should change it right away. If your email account has been phished you should contact your email provider for assistance.

Use Strong Passwords

To make a strong password that cannot easily be guessed, combine letters and numbers into a lengthy password of at least 8 characters, though 14 characters is ideal. Avoid using your name, username, birthday, repeated characters, and common words in your password.

Giving personal information

Don't share your password with anybody else, regardless of how much you trust them. They could take over your account, or they could fall for a phishing scam using your account information. Also, do not give your register link to someone else (link looks like http://xat.com/web_gear/chat/register.php?UserId=123456&k2=123456). Do not share anything odd with another user including cookies or web page source. If a user asks you for data from your PC they are almost certainly trying to steal your account.

Change your Passwords Regularly

It is recommended you change your passwords regularly, at least once a month.

Was kann ich machen, wenn ich denke ich wurde Phished?

If you think your account has been phished, immediately change your password for your xat account, and your password for your email account. Use the forgotten password feature on xat if you can't login. Changing your passwords will keep out the phisher. For other problems please contact us by ticket at http://xat.com/ticket with "xat I may have been phished" as the subject of the message.


Logging into Other peoples accounts

Under no circumstances should you ever log in to someone else account. This is a direct violation of xat.com's terms of service and discovery of this may lead to your own accounts being deleted. If another user needs help they should open a ticket.

Wie kann ich Phishing Seiten melden?

Gehen Sie zu http://xat.com/ticket und melden Sie die Webseite, wählen Sie "Report Phishing Site" aus, die Abteilung und Xat werden entsprechende Maßnahmen ergreifen.

Sie denken, Sie sind ein Pro in Sache Schutz vor Betrügerei?

Wenn Sie der Meinung sind, dass Sie jetzt auf Phishing erzogen sind, wieso beweisen Sie es nicht? Testen Sie Ihr wissen, nehmen Sie an xat Phishing Quiz teil.