feat(console): added phising and fraud guidelines (#3206)

* feat(console): added phising and fraud guidelines * added link to support ticket * add link to navigation * Apply suggestions from code review Co-authored-by: nerda-codes <87707325+nerda-codes@users.noreply.github.com> --------- Co-authored-by: nerda-codes <87707325+nerda-codes@users.noreply.github.com>
scaleway · May 22, 2024 · fd070df · fd070df
1 parent 1e6f8d6
commit fd070df
Show file tree

Hide file tree

Showing 3 changed files with 78 additions and 5 deletions.
diff --git a/console/account/troubleshooting/cannot-erase-account.mdx b/console/account/troubleshooting/cannot-erase-account.mdx
@@ -33,8 +33,3 @@ You may have unpaid consumption, preventing us from proceeding with your request
 
 ### Solution 
 You can check your consumption from your [Billing space](https://console.scaleway.com/billing). All invoices must be marked as paid, and your current consumption must be zero. Once these criteria are met, you can send another request to delete your account and personal data. 
-
-<HelpBanner
-  url="https://console.scaleway.com/support/tickets"
-  title = 'Still need help?'
-/>
diff --git a/console/account/troubleshooting/protecting-yourself-fraud-phishing.mdx b/console/account/troubleshooting/protecting-yourself-fraud-phishing.mdx
@@ -0,0 +1,70 @@
+---
+meta:
+  title: Protecting yourself against phishing and fraud
+  description: This page provides information to protect yourself against phishing and fraud
+content:
+  h1: Protecting yourself against phishing and fraud
+  paragraph: This page provides information to protect yourself against phishing and fraud
+tags: login unrecognized-ip phising fraud
+dates:
+  validation: 2024-05-22
+  posted: 2024-05-22
+categories:
+  - console
+---
+
+Phishing and fraud attempts are a significant threat to online security. This guide provides essential steps to safeguard your Scaleway account from such attacks.
+
+## Recognizing phishing attempts
+
+Phishing is a method where attackers trick you into providing personal information by pretending to be a trusted entity. These attempts can come via email, phone calls, or fake websites.
+
+### Signs of phishing
+
+- **Urgency or threats:** Messages that create a sense of urgency, warning of account closure or legal action.
+- **Suspicious links:** Emails containing links that do not match the legitimate Scaleway URL (e.g., slight misspellings).
+- **Attachments:** Unexpected attachments that may contain malware.
+- **Unusual sender:** Emails from unrecognized or suspicious email addresses.
+
+### Actions to take
+
+- **Verify the sender:** Always check the email address of the sender to ensure it is from an official Scaleway domain.
+- **Hover over links:** Hover your mouse over links to see the actual URL before clicking.
+- **Do not share sensitive information:** Never provide your passwords or personal information via email.
+- **Use official channels:** Access your account by navigating directly to the [Scaleway website](https://www.scaleway.com/) rather than clicking on email links.
+
+## Securing your account
+
+### Multi-factor authentication (MFA)
+
+Enable [Multi-factor authentication (MFA) on your Scaleway account](/console/account/how-to/use-2fa/#how-to-update-mfa) to add an extra layer of security. MFA requires a second form of verification beyond just a password.
+
+### Strong password practices
+
+- **Create a strong password:** Use a combination of letters, numbers, and special characters. Avoid easily guessable information like birthdays.
+- **Unique passwords:** Use different passwords for different accounts.
+- **Password managers:** Use a password manager to store and generate strong passwords.
+
+### Regular account monitoring
+
+- **Review login activity:** Regularly check your account [login activity and active sessions](https://console.scaleway.com/account/profile) for any unauthorized access.
+- **Update information:** Ensure your contact information is up-to-date to receive security alerts.
+
+## Reporting suspicious activity
+
+If you suspect a phishing attempt or any suspicious activity on your account, [report it](#steps-to-report) immediately.
+
+### Steps to report
+
+1. **Do not engage:** Do not reply to the suspicious email or message.
+2. **Report to Scaleway:** Forward the email or provide details of the suspicious activity to Scaleway’s security team [by ticket](https://console.scaleway.com/support/tickets/create) from your Scaleway console.
+3. **Change passwords:** Immediately change your account password and any other accounts that might be affected.
+
+## Educating yourself and your team
+
+- **Security Awareness Training:** Regularly participate in security training to stay informed about the latest threats and how to avoid them.
+- **Stay Updated:** Follow Scaleway’s security blog and announcements for updates on potential threats and security best practices.
+
+By following these guidelines, you can significantly reduce the risk of falling victim to phishing and fraud attempts. Scaleway is committed to ensuring the security of your account and providing resources to help you stay protected.
+
+For more information, visit [Scaleway Security](https://security.scaleway.com/).
diff --git a/menu/navigation.json b/menu/navigation.json
@@ -111,6 +111,14 @@
                   {
                     "label": "I cannot log into my account",
                     "slug": "cannot-log-into-my-account"
+                  },
+                  {
+                    "label": "I cannot erase my account and personal data",
+                    "slug": "cannot-erase-account"
+                  },
+                  {
+                    "label": "Protecting yourself against phishing and fraud",
+                    "slug": "protecting-yourself-phishing-fraud"
                   }
                 ],
                 "label": "Troubleshooting",