Phishing scams have been around for years and continue to be on the rise. With Phishing attacks becoming more and more sophisticated businesses need to be aware of how to protect themselves against this types of threats.
What is Phishing?
Phishing scams are one of the most comment sources of cyber attacks. Typically they come in the form of an email that tries to encourage the recipient to either click on a link or open an attachment.
Often the links take you to fake websites that look incredibly official in order for you to provide personal information to the criminals.
Here are some useful tips on how to spot scam emails:
- The sender’s email address doesn’t match the trusted organisation’s web address.
- There’s a lack of contact details on the email signature – legitimate businesses will always provide contact details within the email footer.
- A suspicious display name that doesn’t match the email address.
- The email isn’t personal and uses a generic greeting like ‘dear customer’ as opposed to your name.
- The email contains multiple spelling and grammatical errors.
- The entire text of the email is contained within an image rather than plain text.
- You didn’t initiate the action – a common phishing email may inform you that you have won the lottery when you haven’t bought a ticket.
- The email asks for personal credentials – legitimate companies including banks will never request for such details via email.
- The email indicates urgent action is required.
What to do if you suspect a phishing scam:
- Do not open the message if it looks remotely suspicious.
- Check the website is legitimate by hovering your mouse over the link but NOT clicking – if it’s a scam, the link will be different to the written text and won’t be for the trusted organisation. Links usually lead to malicious software via .exe files.
- Never open an email attachment if you weren’t expecting to receive it.
- Never supply personal information.
- Never reply to the email or contact the senders.
- Always contact the company prior to taking action to make sure the email is legitimate – search for the contact details online, don’t use the contact details provided in the email.
- Remember, always report the email to Actionfraud.
- Lastly, if the email is suspicious DELETE IT.
If you think you may have compromised the safety of your bank details and/or have lost money due to fraudulent misuse, you should immediately contact your bank.
If you think you may have been effected by this scam or any other scam please do not hesitate to get in touch and we can provide a healthcheck on your machine and network.