4 MINUTE READ
The more advanced cybersecurity becomes, the more criminals try to exploit innocent people. It is important to stay informed of the latest criminal tactics as the endless cycle of scams continues. Phishing scams grow more and more difficult to detect. Here are some warning signs to look out for:
Watch grammar and spelling
While poor grammar and spelling can be a common sign of phishing, scammers are now turning to AI if their first language isn’t English. Emails may appear more polished, harder to detect, and may even mirror the tone of common business emails. Be wary of unexpected messages, such as an email about a package you didn’t order or an account suspension. They will often have a sense of urgency with some action requested. Scammers do still use poor English, so if you notice a lack of punctuation, choppy language, or bad spelling, think twice about responding to the email or interacting with any links. The email may not even make sense or sound like whoever was writing it was disoriented. If the email is confusing or incoherent, it’s best to just delete it.
Using a suspicious email address
While the email may appear like it is coming from a boss, coworker, or someone within your organization, always double check the email address. Make sure that the address follows your proper company standards. For example, if you receive an email from Jane Doe, hover your mouse over the name to reveal the full email address. If the address is JaneDoe@company.com, it may not be a criminal. However, if you receive an email from JaneDoe294930@CoMpanY.com, be wary of sending the information they are asking you for. Scammers may also combine or swap similar letters that are wrong but take more than one glance to notice. For example, a capital “I” (i) looks extremely similar to a lowercase “l” (L) and a combined “rn” looks like a lowercase “m” at a glance. If you are suspicious of the email address, hover over the link or links they sent to read the address but be careful not to click! If you cannot see the destination of the link (the website it is taking you to), stop what you are doing and assume it is an unsafe link. You can also copy and paste the email address into a free email verification checker. As always, check with your IT team if you are unsure whether something is safe.
Asking for sensitive information
It may seem like a small thing if your boss emails you to ask for your phone number, but without looking twice, you may be giving away your information to a criminal. Even something that seems as small as a phone number can have unfortunate consequences. If you receive an email asking for phone numbers, social security numbers, emails, credit cards, company files, or any other sensitive information, before you do anything else, look for signs that the email may be fake. Some emails may even appear as required password resets or links to company documents.
If you are not sure something is safe, check with your IT team. It is always better to be safe than sorry. Reaching out to your IT team is much better than having your company spend hours of damage control to try and keep private information secure.
What do I do once I know it’s phishing?
Do not click any links and do not send any information. Once you know it is a phishing email, you may want to lash out at the sender. It is very important not to reply to any phishing emails you receive, no matter how tempting. If you reply, then they know the email has reached a real person, and your company may be targeted with a specific attack.
The best thing you can do with a phishing attack is report it to your IT team, then delete the email from your inbox. This keeps your information safe while also letting your IT team know about possible threats.
Avoiding phishing scams
Phishing emails can be dangerous. They put your company and your information at risk. Everyone in your company should stay informed on phishing, not just your IT team. One click is all it takes to expose data. Knowing the signs can save you time, money, and the headache of dealing with a data breach. If an email asks for sensitive information, stop and check if it is safe.
Want to learn more about cybersecurity or phishing scams? D2 Worldwide offers both managed and co-managed IT services to fit your business needs. Contact us today for more information.
