Security Awareness Training - Are these payment websites real or phony?

Test Your Security Awareness

The images displayed below are a combination of phishing and real websites. Spot which ones are real and which ones are phony:

Spoiler Alert: Answers are below.

 

Answer: Images 1 and 4 are real. The rest are phishes. Let’s take a look.

Image 1 details: This is the actual website of MyCheckfree.com. Nothing stands out as phishy.

Image 2 details: The biggest and the only giveaway is the phony domain in the link. The real domain is “dashboard.stripe.com” but this one says “dashboard.stripe.ru.” It’s important to stay alert for signs like these.

Stripe Phishing Website Red Flag 2

Image 3 details: The actual domain of BluePay is “bluepay.com.” The attacker has tried to pull a fast one here with “bluepayapp.com.” Also, that banner at the side might have looked a bit odd and out-of-place to you, and you’re right if you thought so. The actual BluePay site doesn’t have that banner.

Image 4 details: This one is legit. It’s the actual Official Payments site.

ERMProtect's Weekly Newsletter

Get a curated briefing of the week's biggest cyber news every Friday.

Stop Phishing Attacks with ERMProtect's Security Awareness Training

Turn your employees into a human firewall with our innovative Security Awareness Training.

Our e-learning modules take the boring out of security training.

Intelligence and Insights

Secure Your Infrastructure

5 Penetration Tests that Will Help Secure Your Infrastructure

Each type of penetration test can help bolster your organization’s security in their own way and in their specific domain areas …
Exploiting Vulnerability, Executing and Granted Access

Why Organizations Need a Vulnerability Management Program

With the number of cyberattacks continuing to increase, organizations need to take a proactive approach to their cybersecurity efforts. Vulnerability management is one way to do this …
human error

CISO Survey: Employees Are The Top Cyber Threat

There is a strong need for more cybersecurity awareness training because human error, whether intentional or not, is an organization’s biggest vulnerability …