What is Phishing Email and How Can I Recognise it’s Phishing Email?

What is Phishing Email?

Phishing refers to fake email messages that appear to come from a legitimate company. The messages are designed to trick the recipient into giving personal information to fraudsters. Some phishing messages including malware attachments.

Phishing Email

How Can I Tell it’s Phishing Email?

Question 1: Do you recognize the email address?

If yes, still be cautions before clicking a link. If no, do not click any links. Look out for email address stated in From field that looks similar to but not same as company’s official email address. Fraudsters often use free email accounts with company names in them to fool you. The sender’s displayed name and email address do not match the purported company the email represents, or the links send the recipient to other websites not associated with the purported company.

Question 2: Are there any attachments in the email?

If so, do not click on the attachment.

Question 3: Does the email request personal information?

If so, do not reply. The fake email requests personal information such as credit card number or password.

Question 4: Does the email contain grammatical errors?

If so, be suspicious. The fake email contains clear spelling or grammatical errors. Emails from legitimate companies are normally proof read extensively before sending.

Questions 5: Are they addressing you by name? or just generic greeting such as “Dear Customer” or “Dear Member”?

If not, be wary. Fraudsters often send thousands of phishing emails at one time but they seldom have your name. Fake email contains generic salutation and/or lacks any contact information for the recipient to use if they have questions.

Question 6: Have you checked the link? Mouse over it and check the URL. Does the link look like it will take you to a suspicious fake website?

If so, don’t click on it. Fraudsters often include a link to a fake website includes a company’s logo or looks like the real page to trick you into disclosing your user name and password.

Questions 7: Urgent action required containing phrases like “your account will be closed,” “your account has been compromised,” or “urgent action required.”

Fraudster is taking advantage of your concern to trick you into providing confidential information. Th fake email creates a high sense or urgency, or threatens consequences for inaction.

Reference

Yahoo Safety: How Can I Identify a Phishing Website or Email?