We all receive dozens of emails every day. Businesses receive hundreds, maybe even thousands. And although some will be useful and perfectly legitimate, others will be what you would call “spam.” In other words, they are junk emails that are usually trying to sell you something.
And then there are the phishing emails. These are a little different, and whereas standard spam is fairly harmless (if annoying), a phishing email is potentially very dangerous. Essentially, a phishing email is one that attempts to extract personal information from you. It might be your address, your banking details, perhaps a credit card number.
It could be passwords or PIN codes or your mother’s maiden name. It might be any of these things, and although you would think they’d be easy to spot, these dangerous emails are becoming more and more sophisticated, and they are catching many people off-guard.
Phishing emails are bad news, but they are some signs to look out for that will help you determine whether an email you’ve received is legitimate or not, and you should also check for them before clicking on any links or giving away any information. Read on to find out more.
Errors: Grammar, Spelling & Formatting
Errors within an email are the most obvious sign that something is wrong, and they’re easy for recipients to check, just by reading through the email carefully.
Even if the email looks as though it’s from a real company, one that you use regularly perhaps, if the name is spelled wrong, if there are grammatical errors throughout, if there’s strange spacing or odd paragraphs, then it’s unlikely to be the real deal. A legitimate company will have certain quality controls in place, and it’s highly unlikely an email with numerous errors would ever be sent.
You need to be sure that the email really came from the company it says it’s from. The quickest way to do this is to look at the email address it was sent from. A real email from a real company would have that company’s name in the tail of the email address. An email from Amazon, for example, would end @amazon.com.
Hackers and scammers don’t always have access to sophisticated equipment that would allow them to clone an email, so you’ll more than likely see that the email is from a free account such as Gmail or AOL. Even if the cybercriminal has gone to little more effort and bought a domain, it’s still not going to match up to the real thing, so take a moment to check this out.
It’s the links in these phishing emails that are the most problematic; click on one, and you’ll be taken to a specially created site that is designed to steal your identity and your money. This is why it’s vital to verify any links in these emails.
To do so, hover your mouse pointer over the link and you’ll be able to see exactly where the link is going to take you. Even if the link looks correct, it might be pointing somewhere else.
Don’t Open Attachments
Attachments can be just as problematic as links. They might be Office files (Word or Excel, for example), or PDFs. Sometimes images are attached. It doesn’t matter what the attachment is, unless you’re expecting it, don’t open it.
Are You Expecting It?
If you’re not expecting an email from your bank or an online store or an energy company, or you’ve done nothing to warrant the email being sent to you, it’s likely to be a phishing email trying to extract your information.
Many of these emails will tell you that an order you placed couldn’t be processed, or that you’ve changed some detail of your account and they just need to make sure the details are correct, or something similar. If you’ve not placed an order or changed any details, this email must be considered suspicious.
In other words, if the email doesn’t match an action you’ve taken and you’re not expecting to receive it, delete it.
Scammers are becoming more and more sophisticated in the way they try to con people out of giving away their important, sensitive information, and it can be hard to spot the phishing emails that arrive in your inbox.
By following the above points, you can certainly lower your chances of being scammed, and you can always find companies to train your employees on better cybersecurity safety.