Phishing is a type of social engineering attack used to steal user data, including login credentials and credit card numbers. It occurs when an attacker,
masquerading as a trusted entity, tricks a victim into opening an email, instant message, or text message. As a result, the victim’s personal information (e.g.username and password, online credentials, credit card information, etc.) can become compromised. Phishing emails are also used to spread ransomware. These emails are embedded with links that, if clicked, download software that encrypts your data and prompts you to pay a ransom before it can be recovered.
Your best tools in combating phishing emails are attentiveness and knowledge. Here are some quick tips on how to stay vigilant and avoid scammers when you receive suspicious emails:
• A sender can falsify the From field of an email. Verify that the sender is who they say they are by checking that the address is legitimate.
• Poor spelling and grammar can be a tell-tale sign of a fraudulent e-mail.
• Check links and URL’s before you click or type them. Some malicious websites use addresses that are similar to well-known websites but are ultimately different by one letter or symbol.
• Be cautious about clicking on links embedded in an email, especially if you don’t know the sender.
• Be vigilant when providing personal or company data. Never share personal or company data where it doesn’t seem necessary or appropriate.
• What if you have accidentally revealed a work-related password? Change it immediately and let your IT support team know. Cybercriminals often use
automated tools to immediately try stolen passwords, so the sooner you react, the better are your chances to prevent a breach.
• Use different passwords for different sites. Once cybercriminals have a password, they will usually try it on other websites to see if they can get