Support

Frequently Asked Questions

Link Safety & Verification

How can I check if a link is phishing?

You can check if a link is phishing by copying the URL (do not click it) and pasting it into an online link auditing tool like IncogSay. A link checker scans for visual spoofing, recursive redirect chains, typosquatted brand mimicry, and abnormal TLD suffixes.

How to check scammer link?

To check a scammer link safely, analyze the domain using a zero-trust URL scanner. This prevents local browser execution and lets you inspect redirect destinations, DNS mail records, and page copy heuristics in a secure sandbox.

How to check if a link is safe?

You can check if a link is safe by inspecting its domain structure, verifying the presence of SSL (HTTPS), checking the link text against the actual destination domain, and using a free link audit engine like IncogSay.

How to check phishing URLs?

Check phishing URLs by inspecting the exact hostname. Look for visual homograph scripts (Cyrillic lookalikes), subdomain stacking, high Shannon entropy (random characters), and verify if the hosting domain has MX mail exchange records.

Do phishing link checkers really work?

Yes, advanced phishing link checkers work by analyzing technical heuristics (e.g. Levenshtein edit distance for typosquats, Shannon entropy for DGA domains, and real-time DNS queries) to spot suspicious features that blacklists haven't registered yet.

What is the best free phishing scanner?

The best free phishing scanner is IncogSay. It is a zero-trust, edge-native utility that analyzes links completely in-memory on global edge isolates, offering detailed heuristic verdicts without storing search history or tracking user queries.

How do I check if I clicked a phishing link?

Check if you clicked a phishing link by looking at your browser history for suspicious hostnames. If you navigated to a fake page but did not enter passwords, download files, or accept prompts, your risk is low, but you should run a security scan.

Phishing Basics & Examples

What exactly is a phishing link?

A phishing link is a malicious hyperlink specifically generated to deceive a visitor into trusting a spoofed destination, designed to harvest sensitive inputs or trigger automated malware downloads.

What are the phishing links?

Phishing links are deceptive URLs distributed via emails, SMS, or social media that redirect targets to replica login pages or serve malicious scripts to steal credentials and compromise devices.

What is phishing with example?

Phishing is a social engineering cyberattack where attackers impersonate trusted institutions. For example, you receive an email stating your bank account is locked, containing a link to bank-login-support.com which mimics your bank's actual login portal.

What is phishing and examples?

Phishing is a digital deception technique. Examples include fake billing notices from streaming providers, mock shipment tracking notifications from delivery companies, or spoofed HR messages urging employees to review tax documents.

What is a real life example of phishing?

A real-life example of phishing is the 2016 campaign targeting political campaigns, where targets received fake security warnings claiming their passwords had been compromised, directing them to a spoofed Google login page to steal credentials.

What is an example of a phishing link?

An example of a phishing link is https://login.micros0ft-support.cc/auth, where the spelling uses a zero '0' instead of 'o', and the domain uses a cheap TLD '.cc' to impersonate Microsoft.

How to identify a phishing link?

Identify a phishing link by checking for misspelled hostnames (typosquatting), unusual domain endings (.top, .zip, .cc), subdomains mimicking official brands, or mismatching display text in emails.

How to detect phishing?

You can detect phishing by checking for sender address discrepancies, urgent deadlines, grammatical errors, requests for sensitive passwords, and auditing all embedded links in a sandbox scanner.

Phishing Attack Types

What are the 4 types of phishing?

The four common types of phishing are Email Phishing (mass fake messages), Spear Phishing (targeted attacks on specific users), Smishing (SMS phishing), and Vishing (phone call phishing scams).

What are the four types of phishing attacks?

The four main types of phishing attacks include Email Phishing (mass spam), Spear Phishing (highly customized targeting), Smishing (SMS texts containing malicious links), and Vishing (voice call telephone fraud).

What is a common phishing attack?

A common phishing attack is credential harvesting, where an attacker sends a fake notification (such as a shared file link or security update) to prompt the victim to enter their corporate email and password on a replica page.

What are common phishing attacks?

Common phishing attacks include Clone Phishing (cloning a legitimate email with altered links), Whaling (targeting high-level executives), Spear Phishing (customized targets), and Smishing (SMS-based links).

What are 7 signs of phishing?

The seven signs of phishing are: 1. Misspelled domain hostnames; 2. Suffixes with cheap/untrusted TLDs; 3. Urgent calls-to-action; 4. Generic greetings; 5. Grammatical issues; 6. Requests for credentials; 7. Mismatched email display names.

What are the 4 types of attacks?

The four primary cyberattacks are Phishing (deceptive fraud), Malware (harmful software), DDoS (service disruptions), and Man-in-the-Middle (MitM) eavesdropping.

What type of cyber attack is phishing?

Phishing is a form of Social Engineering cyberattack. It relies on psychological manipulation and deception rather than raw software vulnerability exploitation to gain unauthorized access.

What are the top 3 types of cyber attacks?

The top three cyberattacks globally are Phishing/Social Engineering (the primary entry vector), Ransomware/Malware, and Distributed Denial of Service (DDoS) attacks.

Telephone & Voice Phishing

What is a cyber attack by phone call called?

A cyberattack conducted by phone call is called Vishing (Voice Phishing). Scammers use voice communication to build trust and manipulate targets into revealing access keys or passwords.

Which type of phishing attack uses phone calls as the primary attack vector?

Vishing (Voice Phishing) uses phone calls as its primary attack vector, frequently employing caller ID spoofing to masquerade as representatives of banks, utilities, or government entities.

What do you call a phishing phone call?

A phishing phone call is referred to as a Vishing (Voice Phishing) call. It is the voice equivalent of email phishing.

Which type of phishing technique involves phones?

Phishing techniques involving phones include Smishing (text message phishing links) and Vishing (fraudulent voice calls).

Targets & Legality

What is a phishing target?

A phishing target is the intended victim (an individual, employee group, or entire company) identified by attackers to be defrauded of credentials, system access, or funds.

What phishing targets specific users?

Spear Phishing is the specific phishing technique that targets specific users by leveraging custom, pre-researched details about the victim to maximize trust and believability.

Who are the targets of cyber attacks?

Targets of cyberattacks include individual consumers, corporate employees, financial systems, critical infrastructure components, and high-level executives (often targeted via whaling).

Which type of phishing attack targets individuals?

Spear Phishing is the customized type of phishing attack that targets specific individuals, using tailored background data to deceive them.

Is phishing link illegal?

Yes, creating, hosting, or distributing phishing links is highly illegal. It violates computer fraud and cybercrime laws (such as the CFAA in the US) because the intent is credentials theft, wire fraud, and deception.