Cybercriminals like to go phishing, but you don’t have to take the bait.

Phishing is when criminals use fake emails, social media posts, or direct messages to lure you into clicking a malicious link or downloading a harmful attachment. If you click on a phishing link or file, you might unknowingly hand over your personal information to cybercriminals. A phishing scheme can also install malware onto your device.

No need to fear your inbox, though. Fortunately, avoiding a scam email is easy once you know what to look for. With the right knowledge, you can outsmart phishers every day.

Recognizing the Signs of a Phishing Email

The signs can be subtle, but once you recognize them, you can avoid falling for phishing attempts. Before clicking any links or downloading attachments, take a few seconds (literally 4 seconds!) to ensure the email looks legitimate. Here are some quick tips for spotting phishing emails:

  • Does it contain an offer that’s too good to be true?
  • Does it include language that’s urgent, alarming, or threatening?
  • Is it poorly written, with spelling errors and bad grammar?
  • Is the greeting ambiguous or overly generic?
  • Does it request personal information?
  • Does it stress urgency to click on unfamiliar hyperlinks or attachments?
  • Is it a strange or abrupt business request?
  • Does the sender’s email address match the company it claims to be from? Look for slight misspellings like pavpal.com or anazon.com.

Uh-oh! I See a Phishing Email. What Should I Do?

Don’t worry—you’ve already done the hard part by recognizing the email is fake.

  • If the email came to your work address: Report it to your IT manager or security officer as quickly as possible.
  • If the email came to your personal address:
    • Do not click on any links or reply to the email—not even the unsubscribe link.
    • Simply delete the email.
    • Take an extra step and block the sender in your email program.

How to Block a Sender

Here’s how to block a sender on popular email platforms:

Reporting Phishing Emails

Many email platforms allow you to report phishing attempts. If you suspect an email is phishing for your information, report it immediately.

  • For work emails: Let your IT department know about the situation ASAP.
  • For personal emails: Follow the platform-specific steps to report phishing:

Another excellent resource is the Anti-Phishing Working Group (APWG), which collects data about phishing attempts. You can send a report to APWG to contribute to their database, helping to prevent phishing and fraud in the future.

Conclusion

Businesses must create awareness among employees to ensure that both the organization and its people are protected against cyberattacks.


By Emmanuel Coffie

Emmanuel is a data scientist with several years of experience. Email:emmanuel.coffie@outlook.com

Leave a Reply

Your email address will not be published. Required fields are marked *