What is safe browsing?

Safe browsing means using the internet in a way that protects you from malware, phishing sites, data theft, and privacy risks. Every time you visit a website, download a file, or click a link, there is a potential risk. Understanding how to browse safely helps protect both your personal data and your organisation's systems from compromise.


1) Malicious websites

Fake or compromised websites can install malware, steal credentials, or trick you into downloading harmful files — sometimes just by visiting the page.

2) Unsafe downloads

Files from untrusted sources may contain viruses, ransomware, or spyware disguised as legitimate software, documents, or media.

3) Tracking & privacy risks

Websites can track your activity using cookies, fingerprinting, and third-party scripts. Public Wi-Fi networks can expose your data to eavesdropping.

Common browsing risks

  • Fake login pages
    A link takes you to "micr0soft-login.com" — a convincing copy of the real sign-in page designed to steal your credentials.
  • Drive-by downloads
    Visiting a compromised website triggers an automatic download of malware without you clicking anything.
  • Malicious browser extensions
    A free ad-blocker or coupon extension secretly reads your browsing data, captures passwords, or injects ads.
  • Public Wi-Fi snooping
    Logging into accounts on unsecured coffee-shop Wi-Fi allows attackers on the same network to intercept your data.
Remember: A website looking professional does not mean it is safe. Always check the URL carefully before entering any information.

Red flags to watch for

  • URLs with misspellings, extra characters, or unfamiliar domains.
  • Missing HTTPS padlock on sites asking for login or payment information.
  • Pop-ups claiming your device is infected or that you've won a prize.
  • Unexpected file downloads you didn't initiate.
  • Browser warnings about unsafe or deceptive sites.
  • Requests to install browser extensions or software to view content.

How to browse safely

  1. Check the URL — look for HTTPS and verify the domain matches the real site before entering credentials.
  2. Keep your browser updated — updates fix security vulnerabilities that attackers exploit.
  3. Avoid public Wi-Fi for sensitive tasks — use a VPN or mobile data for banking, email, and work systems.
  4. Only install trusted extensions — stick to well-known extensions with good reviews and permissions you understand.
  5. Don't ignore browser warnings — if your browser flags a site as dangerous, do not proceed.
  6. Use bookmarks — navigate to important sites via saved bookmarks rather than search results or links.

If you visited a suspicious site or downloaded something

  1. Close the browser tab immediately — do not enter any information.
  2. If you entered credentials on a suspicious site, change those passwords now from a trusted device.
  3. If you downloaded a file, do not open it — delete it and run an antivirus scan.
  4. If you installed a suspicious extension, remove it immediately from your browser settings.
  5. Report the incident to support@it3.co.uk so we can check for any compromise.

How to report unsafe sites

  • Work devices: report to support@it3.co.uk with the URL and details of what happened.
  • Google Safe Browsing: report phishing sites at safebrowsing.google.com/safebrowsing/report_phish.
  • UK reporting: report scam websites to Action Fraud at 0300 123 2040.

60-second checklist

  • Does the URL look correct and use HTTPS?
  • Is my browser and software up to date?
  • Am I on a secure network (not public Wi-Fi)?
  • Did I navigate here via a bookmark or known URL?
  • Am I sure this download is from a trusted source?
  • Have I reported any suspicious sites to IT3?
Start the Safe Browsing Quiz
Key takeaways: Always check URLs before entering credentials, keep your browser updated, avoid public Wi-Fi for sensitive work, never ignore browser security warnings, and report suspicious sites to support@it3.co.uk.