How to avoid passwords steal

Here you have an easy way to avoid passwords steal through website whose look and feel are almost identical to the legitimate one (the so-called phishing)

This is my little trick:

When – entering a protected site – you have to enter username and password, NEVER enter the correct password at the first try: ENTER A WRONG ONE. Always enter the correct password on the second or even third attempt.

This, because: if the server does not recognize that the password is wrong and replay us like if it were right, for example: “…. thanks for updating your data … ” means that the site did not know our password, and, most likely, our data were taken by someone who will try to use them (and which will remain “screwed”); If the website, after entering the wrong password, will give us the message that the password is wrong then we are certainly linked to the real server (because knew the password) and can continue.

If everybody use this little trick before entering a password, the criminals who hold identical copies of the websites to steal passwords never know if the captured password is right or wrong, and probably in a short time will disappear.

Someone said that I had a brilliant idea….. If you want to help us to share this information sends a link to this page to everyone you know, especially those little practices of the Internet and easily deceived.

Now, reading this post you can have your passwords saved, as long as you want, simple using this trick which no need installation, upgrade, update, fee, subscription, registration or whatever. I discover this mode to defense but I cannot sell it so if you want to be grate to me you can do it making a donation (even minimal) clikking on the button 

. By donate you also help to keep online this advertisement (in the last days, some “hacker” or someone who make money by selling antiphishing technologies making me some problems) and to spread it in all the languages of the world to help to fight crime.


phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication, usually by e-mail or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Even when using server authentication, it may require skill to detect that the website is fake

It happen when receive emails that tell how to go to update your credit card or that the account was blocked etc… calling to go on the site and reenter your username and password.