We're here to help!

🔒 How to Protect Your Business Account

Protecting your business account is essential to safeguard your company’s data, finances, and reputation. One of the most common threats to online security is phishing — fraudulent attempts to obtain personal or financial information by impersonating a legitimate business. These attempts often appear as emails, messages, or fake (“spoof”) websites designed to look like trusted organizations.

🧠 Understanding Phishing and Spoofing

• Phishing: A fraudulent method used by scammers to trick individuals into revealing confidential information such as passwords, credit card numbers, or banking details.
• Spoofing: The creation of fake websites or emails that closely mimic legitimate ones to deceive users into providing sensitive information.

Fraudsters can use company logos, nearly identical domain names, and even employee names to make their messages appear authentic. Recognizing the signs of a phishing attempt is the best defense.

🚩 How to Recognize a Phishing or Spoof Attempt

1. Urgent or Alarming Messages

Fraudsters often try to create a sense of panic or urgency. Common examples include:

• “Your account will be suspended if you don’t act immediately.”
• “You’ve won a prize! Confirm your details now to claim it.”

⚠️ Tip: Legitimate companies rarely ask you to act immediately. Take a moment to verify before responding.

2. Requests for Sensitive Information

Kijiji and other reputable organizations will never ask for passwords, banking details, or credit card information via email or text message.

• Password resets will only be sent if you request them directly through the “Forgot Password?” option on our official login page.
• Never share login credentials, security codes, or personal data with anyone claiming to represent us.

3. Poor Grammar and Spelling

Phishing emails often contain odd phrasing, poor spelling, or unprofessional formatting. While not always obvious, these errors can indicate a fraudulent source.

4. Suspicious Email Addresses

Always verify the sender’s email domain. Legitimate Kijiji business emails will come from:

• @kijiji.ca
• @marketing.kijiji.ca
• @kijijileads.com
• @re.limpsys.ca
• @retail.limpsys.ca

Be cautious of emails from addresses like kijiji.support@gmail.com, security@kijiji-help.com, or anything that doesn’t match our official domains.

🌐 Spotting a Spoof Website

Before entering your credentials, always check the URL in your browser’s address bar.

• Official Kijiji site: https://www.kijiji.ca/
• Official Business Account site: https://retail.kijiji.limpsys.com/

✅ A secure website will include:

• “https://” at the start (the “s” stands for secure).
• A lock icon 🔒 next to the URL (visible in browsers like Chrome, Safari, or Edge).

If you notice anything unusual — like kijiji.ca.spoof.com/ or missing “https://” — do not proceed or enter any information.

🕵️‍♀️ Verifying Links Before Clicking

When you receive an email, hover your cursor over any link before clicking. This allows you to preview the actual destination URL.

• If it looks suspicious or unfamiliar, don’t click.
• When in doubt, go directly to the official Kijiji website by typing www.kijiji.ca into your browser instead of following email links.

🧩 Additional Tips to Protect Your Business Account

• Enable two-factor authentication (2FA) whenever available.
• Update your password regularly, and use unique, strong passwords for every account.
• Monitor account activity for unexpected logins or unusual ad posting behaviour.
• Educate your team — ensure that everyone with access to your business account understands phishing risks and how to report suspicious activity.

🆘 If You Suspect Fraud

If you believe you’ve received a phishing email or encountered a spoof site pretending to be Kijiji:

• Do not click any links or download attachments.
• Forward the suspicious email to report@kijiji.ca.
• Change your password immediately from a secure device.

Together, we can help maintain a safer, more trustworthy platform for all our users.