# Phishing

### 🤔 What is phishing?

**Phishing** is a method of fraud where scammers **impersonate** well-known services to steal your login credentials, private keys, or seed phrase.

To access users' funds, scammers use various tactics.

### :eyes: How to recognize phishing scam?

#### Fake Websites

They look almost identical to the real ones, with minor domain differences (e.g., *mytonwallett.io* instead of *mytonwallet.io*).

#### Fake Support

Scammers pretend to be support staff offering "help" with your issues—real or not.

#### Fraudulent Bots

Bots in Telegram or other services ask for personal details or lead you to suspicious links.

#### Hidden Hyperlink Substitution

A link might look legit—like <kbd>t.me/myapp</kbd>—but actually redirect to a fake one, such as <kbd>t.me/myappnotscam</kbd>.

Always double-check the real destination. On desktop, hover your cursor to preview the link. On mobile, tap and hold to reveal where it leads.

### 🥷 How it works?

Here's that scammers do:

{% stepper %}
{% step %}
**Building Trust**

They create a sense of urgency, warn users about potential risks, or offer free help with account problems.
{% endstep %}

{% step %}
**Stealing Data**

Users are redirected to a fake site or form, or asked to share login details or sign a malicious transaction.
{% endstep %}

{% step %}
**Withdrawing Funds**

Once the scammer gains access, they withdraw users' funds immediately.
{% endstep %}
{% endstepper %}

### 🕵️ How to protect yourself from phishing?

* Always check the domain of the site and the support accounts you're dealing with.
* Don’t click suspicious links in emails or messages.
* Avoid downloading files or apps from untrusted sources.
* Enable 2FA for your accounts whenever possible.

{% hint style="danger" %}
**Never share your seed phrase with anyone.**
{% endhint %}

{% hint style="warning" %}
If an offer sounds too good to be true, it probably is. Stick to basic [**security rules**](/intro/scams/how-to-protect-yourself-from-fraud.md) to protect your funds.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.mytonwallet.io/intro/scams/phishing.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.