One way that online hackers and scammers try to get information from customers and gain access to accounts is through phishing. Whether you store your crypto in Rain or on a hardware wallet, we recommend that everyone take the time to understand common online threats and how to protect themselves.
What is Phishing?
Phishing is a fraudulent practice that can happen through different means of communication such as emails, SMS texts, social media posts and fraudulent URLs. Attackers will copy branding and pretend to be a company they are not in order to obtain sensitive information such as passwords, two-factor authentication codes and credit card numbers.
To help identify what these may look like, below are some examples of phishing scams:
Always pay attention to the address of which the email is sent from. At first it would appear as a genuine email from Rain Support, however when looking at the sender address more closely you can see the email is not from a @rain.bh address. Any variation on the email address domain is a warning you have received a malicious email.
The sign in page may look familiar, but note the URL of rain.baayte.com, this is not a legitimate URL of Rain. Fraudsters can easily create fake websites and imitate Rain to gain access to your accounts and personal banking details.
Never input your account information into websites without first verifying the URL and paying attention to the secure domain https://www.rain.bh. Secure domains are easily identified by the https:// and will show a padlock icon in the URL bar.
Tip: You can add https://www.rain.bh to your browsers bookmark to ensure you always visit Rain’s official website or you can use Rain's official mobile application to guarantee a secure and trusted connection.
SMS & Social Media
If you receive a text message or direct social media message asking for personal information or confirmation of a transaction, it is likely a phishing attempt. Rain will never ask for your personal account details or will disclose transaction information in this way.
Always pay attention to the official social media channels ran and operated by Rain, any variations are likely to be of malicious intent:
- Twitter: https://twitter.com/rainfinancial
- Telegram: https://t.me/rainfinancial
- Facebook: https://www.facebook.com/rainfinancial/
- Instagram: https://www.instagram.com/rainfinancial
- LinkedIn: https://www.linkedin.com/company/rainfinancial/
How To Secure Your Account
In order to maintain account integrity, you will need to apply some highly recommended steps, including:
- Using a password manager.
- Enabling two-factor authentication.
- Only using devices you trust.
- Never sharing your one-time password, SMS, two-factor authentication or multi-factor authentication codes with anyone.
Read our full article on securing your Rain account for more information.
Report Phishing & Fraudulent Websites
If you think you have been a victim of a phishing attack, immediately take action to secure your account by changing your personal email and Rain passwords. You can contact us 24/7 via live chat or via our security channel at firstname.lastname@example.org if you have any concerns or questions.
We are dedicated to providing a secure trading environment for our customers. For a comprehensive breakdown on the security undertaken by Rain, please visit the Security directory within our support portal.