I didn't click the fido.ly link, I'm not sure if it's really from fido. If they want me to click on things, it has to come from fido.ca. I agree, this is a TERRIBLE practice from fido to send offers using some URL that we have no way of trusting. Anyone who clicks on these URLs fails security practices against smishing... Bad fido for sending URLs like that, there is no reason why you can't send a shortened URL from fido.ca so that we know it's legit. I'm certainly not going to encourage bad practices by clicking on links. OR: having to google to see who owns fido.ly to make sure it's legit. It's just a bad experience all around, stop doing that.
I'm curious how "fido.ly" is shorter than "fido.ca" I mean, yes, the domain should be predictable. What's to stop me from getting a fido.mx or fido.tv or fido.org domain and phishing for account numbers that way?
You're right, Fido.ly is not shorter than Fido.ca. However, they might not wish to merely direct people to the Fido.ca. Rather they use Fido's custom Bitly domain. If you weren't aware, Bitly is an URL shortening service. Fido can use the service to shorten links such as https://forums.fido.ca/t5/General-Support/Bad-security-practice/m-p/198862/highlight/true#M70964 (link to your post) to Fido.ly. The actual link would be too long to include in a text message. So Fido.ly would be much shorter than the actual URL.
Ok, I think I get it now.
However I think @GonzoYolo is right regarding the fact that it's confusing for people that are not familiar with the concept and it goes against everything we hear about to prevent fraud.
Im a computer engineer myself and i actually worked for Fido for 5 years a while ago. My friends have the habit of contacting me when they have questions and I can tell you I already told 3 persons to quickly delete the sms they got with the Fido.ly link because it was fraud.
Maybe you can report that to your marketing people to prevent bigger long term communication issues with their clients. #justsaying
Welcome to the community!
I'm not sure Fido is using that as their domain per se. I'm guessing they are using a custom URL shortener service like Bitly. I understand a Fido URL might not be that long, but those services also offer businesses analytic metrics. If they are using Bitly, you should be able to preview the link by adding a plus sign to the end of the shortened link (see here).
Hope this helps 😀
I know there might be a technical (or marketing most likely) reason for them to have done it. I work in the IT/webdev industry and I started this thread to criticise what I saw. I'm not really looking for an answer here, just pointing out the problem and hope someone from the company pays attention to it. Fido needs to be educating users about security practices not doing the contrary.
Yes, actual promotional SMS coming from their usual promotional channel number. Didn't visit the link from the SMS, obviously. But upon logging onto their website I received the same promotion as a popup message. Actually signed up for it. But the whole incident made me think BAD FIDO.