Phishing awareness
Posted by: Orhan Sari Category: Cyber-security Awareness, phishing Tags: , Post Date: March 16, 2018

Phishing awareness: 5 tips to help you understand phishing emails

Phishing awareness: Use Keepnet Labs Awareness Educator for free to avoid social engineering schemes.

What is phishing?

Phishing is an endeavour that aim at manipulating you into thinking a legitimate organization is demanding information from you. These demands can seem safe on the surface or may seem to come from a valid source. These scams require you reply to an email, respond to a request on the phone, or click on a link to a phishing website.

When phishing attempts launched by email, they often give clear signs that the request is not legitimate. Links in email to fake pages often take you to a website that look very similar to the legitimate service. This services may vary depend upon cyber criminals research on you, such as banks, e-wallet accounts, email and social networking accounts. Sometimes, cybercriminals phishing emails to multiple addresses randomly in hope that one answer will be enough. However, sometimes phishing attacks targets specific individuals which is called spear phishing.

Phishing awareness: 5 tips to help you understand phishing emails
Online forgery is a very broad topic with many methods such as theft of credit card, seizure of banking credentials,, hacking of social media accounts, and the implementing malware on computer systems. Email phishing is a way of doing this. There are some tips that help you understand phishing emails and develop your phishing awareness:

Fake URL
the URL in a phishing message in your inbox may seen perfectly legitimate. However, if you put your mouse over the URL without clicking it, you can see the redirection page (hyperlinked address). If the URL  address in your inbox is different from the address hyperlinked, this is will be a phishing email.

Domain name
In phishing emails, cybercriminals use different domain names from the legitimate source. When you look at the last part of a domain name, you can see the domain is different from the original.For instance, while the domain name www.keepnetlabs.com the original name of the page, www.keepnetlabs.pearlyn.com  would be the fake address.

Poor spelling and grammar
A message with poor grammar or spelling mistakes will probably be a phishing scam.  Institutional messages are usually reviewed, and one cannot find any spelling, grammar mistakes.

Personal information
An official institution never demands your password, credit card number, or the answer to a security question on email. Beware of such messages.

Beware of the message content
If you get a message informing you that you have won a lottery, you have never bought, it then is a scam. Also, if the message makes unrealistic threats, or demands money, it will be a scam.

Avoid phishing scams
Never hand over your credentials such as passwords, and sensitive information like bank account numbers etc.
Do not click on the link in emails, instead type down the address on your browser.
Avoid suspicious email attachments or links. If necessary, verify the sender.
Check the web address any private information Find ‘https://’ and padlock icon in the address.
Update your entire system, and use an updated antivirus solution.

Want to try Keepnet's Awareness Educator for free?

Click the button and start your free trial today

Share this post