As Phishing continues to be a large concern for businesses both large and small. We have compiled a list of 5 indicators that an email might be attempting to phish personal / business information out of you and your employees. Learn more about what phishing is and why it is a threat here.
Request of login credentials – Any legitimate company will not ask for you login credentials via email. If you get any emails that ask for you to reply back with your login credentials (or any other personal or business information) it is always best to go the web browser and go directly to the company's website, login there, and see if you have any messages or notifications. Never reply back with any sensitive information even if the request appears legitimate.
Link included asking for personal information – On a similar note, if you are sent an email that includes a link that asks you to enter any sensitive information (login credentials, SSN, banking information, etc.) it is best to double check with the source before entering any of the requested information. Criminals can successfully trick targets with links by making the landing pages, when clicked, look incredibly realistic and hard to distinguish that you are actually at a fake site attempting to collect information. Again, it is best practice to go directly to the website you are familiar with by entering the address in your web browser and entering any personal information from there, rather than clicking any links that come via email. If you are ever suspicious, reach out to a customer service representative at the company before clicking on a link.
False sense of Urgency created – One way the cyber criminals target victims is by creating a false sense of urgency to trick you into doing something without fully thinking it through. If you receive any emails that are asking you to do a task or give personal information and are being asked to do it urgently, there is a good chance you are being targeted for phishing of your confidential information. It is always best practice to check with the source directly, whether it be a coworker, someone you work with elsewhere, or a company you are familiar with, before acting on any request that comes in via email, especially when a short time-frame is specified.
Spelling/Grammar Mistakes – An easy way to weed out phishing emails is by paying attention to grammar and/or spelling mistakes. While we all occasionally fall victim to making an error when sending an email, phishing emails are often written by a criminal who is not fluent in English and will make errors in his/her spelling/grammar. If an email is pretending to be from a legitimate company or contact and has spelling/grammar issues that stand out it is very likely from a cyber criminal attempted to phish for confidential information.
Includes an attachment or download that was unexpected – If an email includes any sort of attachment or links you to a location to download something it is always best practice to double check before clicking or downloading. Cyber criminals will often infect devices by getting victims to download items that may appear legit but can sit in the background and infect machines and collect information over time. You can go directly to the trusted website via your web browser and download attachments there if possible as well.
What if I may have clicked on a phishing link?
If you do happen to click on a link that seems suspicious contact your IT staff at 1.800.358.7447 right away. Once you have clicked a phishing link, your computer can be vulnerable to ongoing phishing methods and your personal information could be un-secured.
Have questions about phishing or other cybersecurity topics? Your security experts at Mapletronics are available to help. Contact us here or call us at 1.800.358.7447.