Start a conversation

What is phishing and how to prevent it?

1.  What is a phishing attack?

Phishing is a type of social engineering attack often used to steal user data, including login credentials, 2FA codes, private keys etc. It occurs when an attacker, masquerading as a trusted entity, dupes a victim into opening an email, instant message, or text message. The recipient is then tricked into clicking a malicious link, which can lead to the installation of malware, the freezing of the system as part of a ransomware attack or the revealing of sensitive information. Those are the types of phishing attacks:

  1. Email spoofing
  2. Fake Nominex website

  3. Instant message with malicious link

  4. Social networks with manipulated Nominex link

  5. Chat or direct messages with impersonated Nominex support

  6. Fake Nominex hotline 

  7. Fake accounts in social media

  8. Malware downloaded from internet

  9. Free WIFI Phishing


           2.   Phishing attack protection

It is known that the most important and weakest aspect in a security system is Human Factor, so, to avoid those attacks, be aware that:

  • A spoofed message\email often contains subtle mistakes such as spelling mistake, strange syntax, unsmooth words, misspelled domain name, for example or etc.

  • Attackers will usually try force users to making an action by creating a sense of urgency. For example, an email could threaten account expiration, so it has to be verified within a timeline; A message instructing users to move asset\assets to a “secure wallet” to avoid loss as soon as possible.

           Easy steps to protect yourself:.


  • Always upgrade Google Chrome or Mozilla firefox to the latest version. Google Chrome or Mozilla firefox warn users about phishing or unsafe websites.

  • The safest way to login to Nominex is through the website 

  •  Watch out for shortened links

You should pay particularly close attention to shortened links, especially on social media. Scammers often use these – from Bitly and other shortening services – to trick you into thinking you are clicking a legitimate link, when in fact you’re being inadvertently directed to a fake site.

You should always place your mouse over a web link in an email to see if you’re actually being sent to the right website – that is, “the one that appears in the email text” is the same as “the one you see when you mouse-over”.

  • You should never use public, unsecured Wi-Fi 

  • Enable Two-factor authentication(2FA) Google 2FA. Keep cautious and not disclose Google 2FA 16 digital back key to anyone or any website. If username and password were compromised,2FA prevents the use of compromised credentials, since these alone are insufficient to gain entry.


3.   Reporting Phishing

Please report any nominex phishing sites, social media or imposters you meet to our support team via live chat or email

Choose files or drag and drop files