Common Safety Issues and Precautions
-
HashKey Global Team
How to Avoid SMS Spoofing
-
Do not click any link from SMS before verifying the sender.
-
Cross check with HashKey Global's website to confirm the URL
-
-
HashKey Global Team
How to Avoid Phone-based attacks
-
Be aware of calls from unknown numbers.
-
Subscribe caller identification services to prevent spam/ junk call.
-
HashKey will never ask you to share the password or 2 factor authentication digits on any channel.
-
-
HashKey Global Team
How to Identify URL Spoof Phishing
If the URL is embedded in email, please refer to the How to identify phishing emails section.-
Cross check with HashKey Global's website to confirm the URL.
-
Do not click on URL from social media like X, facebook, Youtube other than HashKey official channel. Attackers can create fake websites or redirect you to it to obtain your personal information.
-
Verify the Protocol - The URL from HashKey is started with Https:// with is secure protocol.
-
-
HashKey Global Team
How to Identify phishing emails
-
Check the email address of the sender. HashKey will only send information to Client via @hashkey.com email domain.
-
Hover over the link and check whether the URL is matched with the URL you want to access. If the URL is not matched, it is a characteristic of phishing. Sometimes, attackers might use short links, i.e. blt.ly and it is easy to hide malicious links.
-
Do not click on any attachment before verifying the sender.
-
-
HashKey Global Team
How to Prevent phishing attacks
Here are some general tips to present phishing attacks:-
Be careful of message related urgent reply - These messages usually claim that you must reply to the message or call back immediately to obtain a reward or prevent loss.
-
Pay attention to infrequent senders/callers - It is a signing of phishing if you receive a message from an unknown person, especially if it is the first time receiving a message from the sender.
-
Keep doubt on incorrect domains - It is a common characteristic that the message/email claims to be our company or very similar to our company, also called 'typosquatting ' For example:
--support.gl0bal.hashkey.com, the 'o' replaced by '0', the email sent from @gmail instead of @hashkey.com.--A Dash between www & hashkey.com-
Do not click on any malicious link and attachments - HashKey will not ask clients to access any website other than HashKey Exchange - Global for information input. The link below is one of phishing websites sent by attackers via SMS/email.
If you are in doubt whether you are facing a phishing attack, it is suggested to check on HashKey Official Channel Verification Guidelines to verify whether the message comes from HashKey. -