Recognize and Report Phishing

Phishing attacks have become an increasingly common problem for organizations of all sizes and can be very difficult to spot. It’s important every individual stop and thinks before clicking on a link or opening an attachment and knows how to spot red flags.

Phishing occurs when criminals try to get you to open harmful links or attachments that could steal personal information or infect devices. Phishing messages or “bait” usually come in the form of an email, text, direct message on social media or phone call. These messages are often designed to look like they come from a trusted person or organization, to get you to respond.

The good news is you can avoid the phish hook and keep accounts secure!

Follow These Top Tips!:

1. RECOGNIZE - Look for these common signs:

• Urgent or alarming language

• Requests to send personal and financial information

• Poor writing, misspellings, or unusual language

• Incorrect email addresses, domain names, or links (e.g. amazan.com)

2. REPORT - If you suspect phishing, report the phish to protect yourself and others.

• Know your organization’s guidance for reporting phishing. If your organization offers it, you may find options to report via the “report spam” button in your email toolbar or settings.

• For personal email accounts, you may be able to report spam or phishing to your email provider by right-clicking on the message.

3. DELETE - Delete the message.

• Don’t reply or click on any attachment or link, including any “unsubscribe” link. Just delete.