This article explains how to recognize a fraudulent e-mail and what to do if you have clicked on a link in the e-mail.

Definition

Phishing is a scam technique that has developed with the Internet. How does it work? You receive an e-mail or an SMS inviting you to click on a link redirecting you to a web form. This one fraudulently takes the design of a brand and takes your personal details or even money from you.

Don't panic, however, phishing can be easily identified! Here is the procedure to follow if you suspect a phishing attempt on your account.

Identify a fraudulent e-mail

There are several ways to check if the email or the renewal reminder is from Online.net or Scaleway.com:

  • Sender email address
  • Link
  • ID
  • email language
  • currency used
Example of Phishing email

Sender email address: Verify that the email used to send the email ends with "@online.net" or "@scaleway.com".

Link: Without clicking on the link, move your mouse over the link in the email and you will see the URL address without having to click on it (at the bottom of your browser). This link must start with: https://www.online.net or https://www.scaleway.com

ID: You can see your management console ID in the email.

In addition, the request to download an unidentified attachment (beware of viruses!) may also be an indication of fraudulent mail, so please contact us if you have any doubts.

Phishing related to the renewal of my services

Some services try to take the opportunity of the expiration date of your domains or other services to migrate you to them, usually asking you for a larger amount than you are currently paying.

If necessary, you can renew your services via this link directly: https://console.online.net/fr/order/renew

Do not answer or send anything. We never use third party companies to send reminder emails regarding the expiration of your reserved domain names on Online.net.

Report a phishing e-mail

If you are sure that you have received a phishing email that steals Scaleway's identity (scaleway.com or online.net), here is how to proceed:

  • You can send us as much information as possible (the content of the e-mail, the headers...) by opening a ticket in your management console.
  • Delete it without replying, clicking on the links or downloading the attachments.

In case of doubt, contact a customer service by phone on +1 302-782-0229 (call not surcharged).

Other types of phishing

Other types of phishing exist with campaigns as:

  • Fraudulent SMS
  • Social networks (Twitter, Facebook...)

For fraudulent SMS, as for emails, delete fraudulent SMS without delay, and do not answer or call.

Please note: numbers that start with +33 899 are special premium rate numbers that we do not use.

In case you have filled in personal information:

1/ If you have unfortunately entered your credit card number on a fraudulent site, the only thing to do is to contact your bank quickly in order to oppose it. Tell them the date and time you entered your credit card number, if possible, and only your bank can intervene to cancel fraudulent transactions that may have been made without your knowledge.

2/ If you have typed your Scaleway or Online password on a fraudulent site, log in to your Scaleway or Online customer area and change your password. We also recommend that you also enable double authentication to secure your account.