From 8e0066e47000a6b4bc09b051a37f776bce5a9bf5 Mon Sep 17 00:00:00 2001 From: Tim Sh Date: Sun, 5 Apr 2026 23:07:26 +0100 Subject: [PATCH] content: clarify phishing awareness guidance on account claims and channel scope Clarify that profile labels and platform status indicators are not proof of legitimacy, and state that unsupported platforms should be explicitly identified. --- docs/pages/community-management/overview.mdx | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/docs/pages/community-management/overview.mdx b/docs/pages/community-management/overview.mdx index b0479081..2acb2a58 100644 --- a/docs/pages/community-management/overview.mdx +++ b/docs/pages/community-management/overview.mdx @@ -54,8 +54,11 @@ platform-specific recommendations in more depth. - Educate members on recognizing and reporting phishing attempts. - Clearly communicate to community members that your team will never send the first direct message to them. This is important because attackers often impersonate team members and initiate direct messages to trick users into believing - they are legitimate, thereby gaining their trust and potentially compromising their security. -- Publicly define all official communication channels used by your organization. + they are legitimate, thereby gaining their trust and potentially compromising their security. + However, statements such as “will never DM first” or labels like “Official,” “Support,” or platform status indicators (e.g., premium badges) must not be treated as proof of legitimacy. +- Publicly define all official communication channels and clearly state which platforms are not used. +If a platform is unsupported, declare this alongside official links (e.g., “We do not operate a Telegram community”). +Where possible, reserve common impersonation handles and maintain placeholder accounts that redirect users to official channels. Refer to the [**Security Awareness framework**](/awareness/overview) to learn more about social engineering techniques and security training best practices.