Stay safe from phishing: How to keep your account secure.

What Is Phishing?

Phishing is a type of cyberattack where an attacker pretends to be a trustworthy service to trick you into giving away your login credentials or MFA (multi-factor authentication) codes.

 

Phishing Can Look Like:

  • Emails asking you to quickly “verify” or “recover” your account.
  • Fake login web pages that may look real.
  • Forum replies or blog posts with fake “helpful” links.
  • Search ads impersonating real portals that lead to fake login sites.

 

How To Recognize A Phishing Attempt

If you’re ever unsure or suspicious, it’s better to be safe. 

Ask someone, and get help!

Here are some key signs to watch for before you click or share any information:

  • URLs that are misspelled or unusual (like microsoft-office-secure.com instead of office.com)
  • Emails or messages with spelling errors, poor grammar, or mismatched branding
  • Links in blogs or forums that claim to be from said site but direct you to unfamiliar domains
  • Unsolicited MFA or password reset prompts

Always be cautious when clicking links, especially if you didn’t request them, and double-check the sender and URL before taking any action.

 

Steps to Take if You Suspect A Phishing Attack

Immediate Actions

  • Do Not Open the Message: If you suspect an email or text is a phishing attempt, do not open it. Opening it may compromise your personal information.

  • Delete the Message: Immediately delete the suspicious email or text to prevent accidental interaction in the future.

  • Do Not Click Links or Download Attachments: Avoid clicking on any links or downloading attachments from the suspicious message, as they may contain malware.

Verification Process

  • Check the Sender's Information: Look closely at the sender's email address or phone number. Phishing attempts often use slight variations of legitimate addresses.

  • Contact the Company Directly: If the message claims to be from a company you know, contact them using a verified phone number or website, not the information provided in the suspicious message.

Reporting the Attack

  • Report the Phishing Attempt: Use the reporting features in your email service or contact the relevant authorities to report the phishing attempt.

  • Inform Your IT Department: If you are at work, notify your IT department about the phishing attempt to help protect others.

If You Responded to a Phishing Attempt

  • Change Your Passwords: If you provided any personal information, change your passwords immediately.

  • Monitor Your Accounts: Keep an eye on your bank and credit accounts for any unauthorized transactions.

  • Consider Identity Theft Protection: If sensitive information was compromised, consider enrolling in identity theft protection services.

Taking these steps can help protect you from the consequences of a phishing attack.

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

6 Steps To Protect Your Account

Follow these steps to reduce your risk of compromise and keep your data safe: 1. Verify URLs...