Gone phishing
Phishing is the top attack method for social engineers – it’s how they steal data, defraud people of money, and spread malicious software. Always think before you click!
Do you know how to spot a phishing attack? Here are five easy questions to ask yourself to avoid being caught on a cybercriminal’s hook.
- Does it push a sense of urgency?
- Does it feature threatening language?
- Does it offer unrealistic promises?
- Does it contain suspicious links or attachments?
- Does it come from a sender you don’t know or didn’t expect?
If the answer is yes to one, some, or even all these questions, there’s a high likelihood you’re being phished.
Spot a phishing scam
Links: On a computer, you can identify a malicious link by hovering your mouse over it to reveal the full URL. If it looks odd or suspicious, or you’re not sure, don’t click!
Attachments: Never open an attachment unless you are certain it is from a trustworthy source.
Email addresses and URLs: Keep in mind it’s easy to steal real company logos or create email addresses that appear to come from a legitimate source. Always thoroughly inspect the “from” address for any changes (e.g. Amazom.com where Amazon is spelled incorrectly).
Phishing is a dangerous attack that combines manipulation and deception. Remember to slow down and stay alert to avoid being scammed.
