We all get phisning emails. What you may not know it just how many phishing emails are sent out daily. Some research puts this number at 3 Billion per day (3,000,000,000). As you can see, phishing remains one of the most useful tools in a cybercriminal’s arsenal.
I will not go into a deep dive about what phishing is and why phishing exist. This post is simply what to do when you receive a phishing email.
If you did not follow steps 1 and 2, the situation gets serious depending on how many things you clicked and what information you gave to the website you clicked on. if you clicked on anything, let us know ASAP so we can take appropriate actions.
If you are unsure if the email is fake, pick up the phone and call the vendor you do business with to verify the information in the email. Do not reply to the email asking “Is this real”. if the email if from someone you don’t do business with, then it is obviously fake.
Please do not forward phishing emails to AllPro asking “Is this fake” I don’t want phishing email in my staff’s mailbox. 75% of the time, we never get what you forwarded because our spam filter blocks them.
You are often waiting on a response from us that may never come. Delete the phishing email and move on with your life.
Here are some things to review when trying to determine if an e-mail is legitimate or not. If you can answer YES to any of these, chances are the message is spam.
Is this email unexpected from the sender or company?
Is the sender or domain NOT trusted or recognized? (The domain is the text after the @ sign.)
Is the sender purportedly from a known company but is sending from a public e-mail domain like Gmail or Yahoo?
Is the domain misspelled?
Does the e-mail contain frequent misspelled words or is poorly written?
Does the e-mail ask for a credit card number, social security number, or password?
Did you receive an unexpected or unrecognized attachment claiming to “Open Now” or be an “invoice”, etc.?
Does the e-mail demand an immediate response or is marked as urgent?
If you hover over the e-mail address or any link in the e-mail, does it point to a different address or otherwise suspicious?
Admittedly, suspicious links are the hardest thing to spot (especially on mobile devices.) Some spam filters actually change the link address to protect users from clicking on bad links. if you are unsure, simply do not click on a suspicious link!
A few SPAM FAQ’s :