News archive

The Anatomy of a Scam Domain: How to Stay Safe Online

Examine the Domain Name

Fraudsters often create domains that closely resemble well-known brands or companies. In some cases, the differences are easy to spot; in others, they are so subtle that even experienced users might overlook them. For example, replacing google.com with g00gle.com is an obvious red flag. However, a scammer could replace the lowercase “l” in paypal.com with an uppercase “I” (paypaI.com), which can be much harder to detect.

Also, be wary of domain names that contain unnecessary words. Scammers often add terms like "secure" or "support" to create a false sense of security. Legitimate companies don’t need to include these words in their domains. For example, avoid clicking on links like facebook-secure.com or paypal.support.com, as they are likely fraudulent.

Pay Attention to the Domain Extension

Reputable brands and organizations use widely recognized or country-specific domain extensions. These include .com, .org, or regional domains such as .ee (Estonia) and .fi (Finland). Scammers, unable to register official domains, often use lesser-known or suspicious extensions like .xyz or .top to carry out their schemes.

In addition, remember to also check the maid domain of the sub domain. Remember, that subdomain is located before the main domain. For example, one of the subdomains of internet.ee is auction.internet.ee. However, if you see the domain bank.login.ee, the main domain is “login.ee” and the subdomain is “bank”. This is designed to mislead the user and increase reliability.

Check the Security of the Connection

A quick way to assess a website's security is by looking at the beginning of its web address. Legitimate sites use an encrypted connection, indicated by "https://" at the start of the URL. If a site only has "http://" (without the “s”), it may not be secure. However, it's important to note that scammers have adapted and now also use https:// to appear more legitimate. Therefore, always look for additional signs of fraud.

Use WHOIS Lookup Tools

Scammers can be deceptive, and some fraudulent websites may not have obvious red flags. In such cases, checking the domain's registration details can provide more insight. You can use WHOIS lookup tools to see who registered the domain and when. For .ee domains, you can verify details through the search engine on internet.ee. To stay safe, avoid clicking directly on links; instead, copy and paste them into a trusted WHOIS search tool.

Research and Read Reviews

Since scams are increasingly common, chances are that others have already encountered similar fraudulent websites or scam emails. If you receive a suspicious email or come across an unfamiliar website, do a quick online search. Check if others have reported similar cases on forums, social media, or scam alert websites.

Be Cautious with Links and Hypertext

The most important rule is never to click on suspicious links or messages, especially if they redirect you to an unknown page. Before clicking on a hyperlink, hover over it to see the actual URL—it will appear in the lower-left corner of your browser. This is crucial because cybercriminals often disguise malicious links behind legitimate-looking text. For example, an email may display a blue hyperlink appearing as paypal.com, but in reality, it might lead to a completely different address. Only click on links if you are certain they are safe.

Keep your domains safe

For entrepreneurs, it is important to keep in mind the timely renewal of domain registration. This way, you can be sure that the use of your company name is in your hands alone and that it cannot be used for malicious purposes (even in the future). All expired domains (not just .ee) will become available for registration to anyone interested all over the world at a certain point. In the case of the .ee domain, a domain auction is used, which gives you one last chance to own the domain. Remember that cybercriminals are especially interested in domains that are associated with active web traffic and good search engine visibility. It is safest to register a .ee domain for ten years - this way you do not risk losing your domain if you forget to renew it on time.

Even if a domain or website appears trustworthy at first glance, it’s always best to stay cautious. If you encounter a scam or fall victim to cyber fraud, report it to the relevant authorities. For example, in Estonia, you can report cybercrime to the Police and Border Guard via their cybercrime form: https://cyber.politsei.ee/.