Correct, which is why you primarily need to check the URL and particularly the domain. I mention HTTPS because if you're on the right domain and it's not HTTPS when it should be, you're most likely getting MITM'd or another such attack is being used.
Correct, which is why you primarily need to check the URL and particularly the domain. I mention HTTPS because if you're on the right domain and it's not HTTPS when it should be, you're most likely getting MITM'd or another such attack is being used.