Home » CenturyLink » Currently Reading:

Gone Phishing: Hackers Target CenturyLink With Authentic Looking Customer Portal Website – Customers Beware

Phillip Dampier February 11, 2010 CenturyLink No Comments

CenturyLink customers should exercise caution in responding to e-mail links to CenturyLink’s online account portal.  Hackers have meticulously duplicated the look and feel of the nation’s fourth largest phone company’s online account website with hopes customers will provide personal information that can be used for identity theft or fraudulent financial activity.

Trend Micro’s TrendLabs group warned readers it noticed the well-done phishing fakes popping up on several websites, preparing to collect information from unsuspecting customers.  Most phishing attacks typically start with unsolicited e-mail purporting to be from CenturyLink, with a convenient link included for customers to click.  Only this e-mail will not direct visitors to CenturyLink, instead diverting customers to the impostor websites that look like the real thing.

Customers can protect themselves from these phishing tricks and traps by following this advice:

  1. If receiving e-mail from a company asking you to follow a link to their website, you are safer typing in the company’s website address yourself, ignoring the link.  Links that look authentic in an e-mail can be anything but when you click on them.  If you intend to share personal information or password to log in to a website, it’s better to start your journey there yourself.
  2. If the site you reach shows an unexpected address in the URL window, that is often a warning sign trouble is brewing.  CenturyLink’s account login screen should display either https://secure.centurylink.net/login.php or https://eam.centurylink.com/eam/login.do.  If it shows a series of numbers or a website address other than centurylink.com or centurylink.net, consider ending your visit and starting over at centurylink.com, typed into your browser yourself.  When in doubt, don’t enter your login information.
  3. A padlock should be visible somewhere in your browser at the CenturyLink login screen.  Most place the padlock at the bottom of the browser screen.  No padlock?  Danger.
  4. Any code errors on the page that show up should also be a point of concern along with spelling and grammatical errors.

In general, using up to date antivirus software and applying security patches regularly will offer some advance warning of a suspicious message.  But nothing beats common sense.

The authentic CenturyLink website. Notice the padlock circled on the right.

The fake version phishing for your personal information. Circled on the left is a warning of code errors on the page. On the right, notice the absence of a padlock icon.

Search This Site:

Contributions:

Recent Comments:

  • Kim: I am currently paying TWC $180 a month for tv, internet, and home phone. I recently tried calling to have my home phone removed, since both my daughte...
  • James R Curry: No guarantee at all. But, as there's no contract commitment, you can at least cancel if they gut the line-up....
  • Required: Much more expensive than Hulu or Netflix, doesn't let you time-shift (VOD) all the shows/movies,, and doesn't solve the local news/sports problem, rea...
  • JayS: Looks like the era of the CVNO (CableTv Virtual Network Operator) has arrived. MVNO's have been terrific for the Mobile-phone consumer. We now have nu...
  • Gregory Blajian: A quick analysis for my wife and my entertainment situation is below. Getting Starz and MLB Network plus the A&E and Viacom family of channels mig...
  • Elbert Davis: Your last paragraph is exactly why Armstrong Cable cord-cutters cannot have this--200GB a month is all we're allowed to have until we have to pay Arms...
  • ANgela Hill: Did you get anywhere with this? I am about to do the same thing myself. My bill is $170 month, and I cannot do it any longer....
  • Paul A Houle: Frontier is not going to be a competitor. Verizon will sell their copper to Frontier. Frontier can't afford to upgrade their networks but they can a...
  • Limboaz: Trump has named David Higbee and Joshua Wright to his transition team. I guess we can assume they will be involved in anti-trust enforcement since tha...
  • Chad: If you're in NY, and you think you've been charged unfairly by TWC, you should submit a claim with David. It takes 5 minutes and they'll fight for a r...
  • Abraham Long: I have standard internet here in Rochester, NY. The intro price is $34.99 and recently it went up to $44.99 for the second year. All I had to do was m...
  • Lee: Switched to Earthlink internet and PlayStation Vue and couldnt be happier. How did I not figure this out before?!?!?! Its worth a peek....

Your Account: