Additional menu

WPBlog

Where We Share About All Things Digital

false impersonation
WPBlog > Articles > What to do when scammer impersonate your website

What to do when scammer impersonate your website

posted on

Have you been a victim of a phishing attack or wants to protect your company against impersonation? Phishing refers to a cyber attack that targets individuals. They tend to ask for sensitive information by impersonating a representative of a legitimate organization.

Last year, we received several emails and phone calls alerting us that there were several impersonators that were reaching out to the public. They were pretending to be our employees and sending website link that was not affiliated with us to solicit personal information and financial gains.

Below are the steps we took to report them and what you can do if you find yourself a victim of impersonation as well:

Inform the relevant authorities:

The first thing you should do is to report to the authorities of such attacks. You can file a police report online. An investigation officer will be assigned to you and contact you for the necessary follow up.

Make an announcement on your official channels:

It is also important to inform the general public (including your employees) through your company’s official channels regarding such attacks. This may reduce the possibility of getting scammed. You may wish to do the following to warn them:

  1. Have a pop-up message on your official website and/or
  2. Post on your company’s official platforms.
  3. Report the scam and reply to them directly.
pop up message on official website
Facebook spam report
Facebook scam warning

Do include the following details in your message:

  1. Acknowledging that you are aware of the impersonation.
  2. Informing them that a police report has been made.
  3. Denying the association with the scammers.
  4. Listing your company’s official site/channels.

Report the abuse to SSL and Domain name registrar:

Here are some other websites for you to report the abuse to:

  1. Let’s Encrypt Repository (if the website is using Let’s Encrypt)
  2. Name Abuse
  3. Report Phish
  4. Report badware
  5. Report unsafe site guest

In our situation, the phishing website was using Let’s Encrypt. Do report to the respective cert provider depending on your situation.

Conclusion

It is important to inform the authorities and the public as soon as possible in order to prevent more people from getting scammed. By informing them, you protect your company against impersonation when you deny any alleged association with them.

If you have a WordPress site, do refer to our other article on how you can make your site safe and secure.

Filed Under: Articles Tagged With:

Coding Cybersecurity Digital News and Trends Digital Marketing UI & UX Design Website Design

Related posts:

SSL GuideWhat’s SSL and Why Do I Need One For My Website? GDPR RegulationsGDPR: What You Need to Know and How to Make Your Site Compliant Copyright Protection and InfringementCopyright Infringement: How to Protect Your Site and Online Content WordPress Security TipsTips To Keep Your WordPress Site Safe and Secure