# Phishing **Phishing** is the practice of tricking a user into using malicious software that is designed to look legitimate. The malicious site may try to harvest credentials, or trick a user into downloading a tampered version of key software. For example, if you are tricked into logging into a malicious website at c0inbase.com, the attacker can then use your username and password to access your Coinbase account. Phishing is a common practice. Users of desktop wallets like [**Electrum**](https://www.malwarebytes.com/blog/news/2019/04/electrum-bitcoin-wallets-under-siege) were attacked with a false upgrade notice, tricking them into downloading a version of the software that steals their Bitcoin. **Mitigation:** * Watch carefully for HTTPS warnings on cryptocurrency sites. * Always check the URL on cryptocurrency sites. * Use a multi-signature wallet, which would require the user to be tricked multiple times before fund theft is possible. * Use a sovereign key storage system that avoids single points of failure. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.casa.io/wealth-security-protocol/threat-overview/phishing.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.