This small detail could save your butt.
Of course, with AI tools aiding scammers in creating more sophisticated messages and phony websites, it no longer takes much work for phishing attacks to match a company’s new look. That’s why you should still use other techniques to help dodge scams, lest you be taken off-guard at a weak moment. The simplest and strongest defense? Choosing a login method that’s resistant to phishing attempts—i.e., passkeys.
If you use a password, first make sure your password manager offers to autofill your credentials on that site (a signal that it’s the legitimate site). Also enable two-factor authentication where available—and if practical, choose the hardware key method (e.g., a YubiKey), as it’s phishing resistant compared to software-generated tokens.
There’s a lot to memorize these days. But even making a fuzzy note in your brain of changes to major services can help you from falling for an online scam. For most people, Gmail acts as a linchpin for everything online—banking, travel, shopping, you name it. You don’t want to lose access to that kind of account.