Phishing emails continue to be one of the most common initial attacks to steal identifies and login credentials. To infect a system, the attacker simply has to persuade a user to click on a link or open an attachment. Most recently they are providing a phone number for you to call.
The good news is that there are many indicators that you can use to quickly identify a phishing email. The best defense against these attacks is to familiarize yourself with the most common elements of a phishing attack.
Here are a couple common indicators of phishing attempts –
- Suspicious sender’s address. If you look at the “From:” the sender's address may imitate a legitimate business or person you know. Cybercriminals often use an email address that closely resembles one from a reputable company by altering or omitting a few characters. A clear indication is the actual email is coming from a Gmail account
- Spoofed hyperlinks and websites. If you hover your cursor over any links in the body of the email, and the links do not match the text that appears when hovering over them, the link may be spoofed. Malicious websites may look identical to a legitimate site, but the URL may use a variation in spelling or a different domain (e.g., .com vs. .net). Additionally, cybercriminals may use a URL shortening service to hide the true destination of the link.
If the email looks a bit off, question it. Forward it to the Helpdesk for review at firstname.lastname@example.org.
For more tech tips click here > SCOE Tech Tips
Visit the SCOE Cyber Safety website for security tips, news and alerts: