SecuritySpanish version

Support article

How to avoid online scams and protect your data

Learn how to detect online scams, fake emails and fraudulent pages to protect your passwords, payments and hosting access.

Published: 30/06/2026Updated: 30/06/2026

Introduction

Online scams are becoming more common. They can arrive by email, messages, social media, calls or fake websites that try to steal passwords, payment details or access to your hosting.

Sometimes the fraud looks very convincing: it uses known logos, urgent messages or links that imitate a real company. That is why it is important to recognize warning signs before clicking or entering your data.

Common signs of an online scam

Be suspicious if you receive a message that:

  1. Asks for passwords or bank details.
  2. Uses an urgent or threatening tone.
  3. Says your account will be suspended if you do not act immediately.
  4. Includes strange or shortened links.
  5. Has spelling mistakes or odd formatting.
  6. Promises prizes, gifts or discounts that are too good.
  7. Asks you to install unknown software.
  8. Pretends to be miHosting, a bank or a well-known service.

No serious provider should ask you for your full password by email.

Before clicking:

  1. Hover over the link to see the real URL.
  2. Check that the domain is spelled correctly.
  3. Avoid shortened links if you do not trust the sender.
  4. Do not trust only the logo or design of the email.
  5. Enter manually by typing the official address in the browser.

A fake domain may change just one letter or add extra words to look legitimate.

What to do if you receive a suspicious email

  1. Do not click links.
  2. Do not download attachments.
  3. Do not reply to the message.
  4. Mark the email as spam or phishing.
  5. Access your account from the official address.
  6. Contact support if the message claims to be from miHosting and you have doubts.

If the email includes an invoice, expiry notice or suspension warning, check the real status in your client area.

How to protect your accounts

Use unique passwords

Do not reuse the same password for your email, hosting panel, WordPress and external services.

Enable two-factor authentication

Whenever possible, use 2FA. Even if someone steals your password, they will need a second factor to get in.

Keep your device clean

A computer infected with malware or keyloggers can steal your credentials even if the website is legitimate.

Review your access

If you suspect a scam, change passwords and review recent access.

Useful tips

  • Save important URLs in your bookmarks.
  • Never send passwords by email.
  • Check the real sender, not only the visible name.
  • Be suspicious of .zip, .exe, .scr files or unexpected documents.
  • Keep your browser, operating system and antivirus updated.
  • Educate the people who also manage your website or email.

Common problems

The email looks like it came from miHosting

The visible sender name can be forged. Check the real address and always access through the official URL or your bookmarks.

The message says my domain expires today

Log in to your client area and review the domain status. Do not pay from suspicious links.

Close the page, do not enter any data and scan your device if you downloaded something.

Frequently asked questions

What is phishing

It is a scam that tries to trick you into giving away passwords, banking details or private information on a fake page.

How do I know whether a website is safe

Check that it uses HTTPS, that the domain is correct and that it does not ask for unnecessary data. The padlock helps, but it does not guarantee the site is legitimate.

What should I do if I entered my password

Change it immediately from the official website, review access and enable 2FA.

Can I forward a suspicious email to support

Yes. If the message seems related to your service at miHosting, open a ticket and attach the information so it can be reviewed.

Conclusion

Avoiding online scams depends on combining attention, strong passwords and link verification. If you have doubts, do not act from the message you received: go manually to the official website or ask support.