Home » CenturyLink » Currently Reading:

Gone Phishing: Hackers Target CenturyLink With Authentic Looking Customer Portal Website – Customers Beware

Phillip Dampier February 11, 2010 CenturyLink No Comments

CenturyLink customers should exercise caution in responding to e-mail links to CenturyLink’s online account portal.  Hackers have meticulously duplicated the look and feel of the nation’s fourth largest phone company’s online account website with hopes customers will provide personal information that can be used for identity theft or fraudulent financial activity.

Trend Micro’s TrendLabs group warned readers it noticed the well-done phishing fakes popping up on several websites, preparing to collect information from unsuspecting customers.  Most phishing attacks typically start with unsolicited e-mail purporting to be from CenturyLink, with a convenient link included for customers to click.  Only this e-mail will not direct visitors to CenturyLink, instead diverting customers to the impostor websites that look like the real thing.

Customers can protect themselves from these phishing tricks and traps by following this advice:

  1. If receiving e-mail from a company asking you to follow a link to their website, you are safer typing in the company’s website address yourself, ignoring the link.  Links that look authentic in an e-mail can be anything but when you click on them.  If you intend to share personal information or password to log in to a website, it’s better to start your journey there yourself.
  2. If the site you reach shows an unexpected address in the URL window, that is often a warning sign trouble is brewing.  CenturyLink’s account login screen should display either https://secure.centurylink.net/login.php or https://eam.centurylink.com/eam/login.do.  If it shows a series of numbers or a website address other than centurylink.com or centurylink.net, consider ending your visit and starting over at centurylink.com, typed into your browser yourself.  When in doubt, don’t enter your login information.
  3. A padlock should be visible somewhere in your browser at the CenturyLink login screen.  Most place the padlock at the bottom of the browser screen.  No padlock?  Danger.
  4. Any code errors on the page that show up should also be a point of concern along with spelling and grammatical errors.

In general, using up to date antivirus software and applying security patches regularly will offer some advance warning of a suspicious message.  But nothing beats common sense.

The authentic CenturyLink website. Notice the padlock circled on the right.

The fake version phishing for your personal information. Circled on the left is a warning of code errors on the page. On the right, notice the absence of a padlock icon.

Search This Site:

Contributions:

Recent Comments:

  • Dan: OK, it's not a dongle, it is a wireless hot spot. But computer supply stores will usually carry standard wireless dongles that you can use with statio...
  • Dan: If this is a USB connected dongle, it can be connected to a non-mobile PC as well (at the end of a cable if necessary to raise it to a better physical...
  • cruzinforit: Here is the cable occurence screen, this is where we'd assign service to individual boxes, so DVD boxes have DVR service. Maybe you only want hustler ...
  • cruzinforit: To be fair, there is a 6 week training course when you are hired, and most of that is devoted to icoms training and practice, and you learn really qui...
  • Phillip Dampier: Thanks for sharing some enlightening information. I can imagine a new person being confounded by some of this. Turnover is the enemy of ICOMS I guess....
  • Phillip Dampier: Actually, a Comcast rep changed the name of one of their customers to "Asshole Brown" in the billing system after an unpleasant encounter with the cus...
  • Joe V.: AT&T is the worst. F**king crooks....
  • Timothy James: Excellent inquiry! This obvious bait and switch is sure to raise a few red flags. It just doesn't get more clear-cut....
  • Timothy James: Uhh. Is the dirty Comcast joke... intentional?...
  • Cruzinforit: As a former TWC employee, I have a lot of experience with ICOMS, and CSG. I worked with both of them for 2 years. Let me say this, between the two o...
  • Stephen Sherry: Slowed progress for the pockets of investors who speak of trickle down, but keep the profits for themselves to creating a class of super rich exploite...
  • Eugene Powers: Thank you so much I will try it....

Your Account: