How to Determine if an Email is Phishing
- Jon Cunningham (Deactivated)
- Aeoleon Bryant
- Lacrecia Underwood
- Andrew Mcdonald
Phishing emails are deceptive messages that appear to come from reputable sources, aiming to steal personal information or credentials. These emails may seem legitimate by using familiar logos and branding but are actually fraudulent. Being vigilant about recognizing and avoiding phishing attempts is crucial for protecting your personal and professional information. This guide outlines steps to help you identify phishing emails effectively.
Steps to Determine if an Email is Phishing
1. Check Personalization
Look for Personal Addressing: Phishing emails often lack personal details, addressing you by email address or a generic term like "Customer" instead of your name.
Verify Known Contacts: If the email claims to be from someone you know but doesn't address you personally, be cautious.
2. Analyze the Tone and Content
Urgency and Incomplete Information: Phishing emails typically have a sense of urgency, prompting quick action with minimal details.
Unexpected Attachments: Be wary of attachments that claim to be important documents, especially if you weren’t expecting them.
3. Inspect the Sender’s Email Address
Look for Irregularities: Check the sender’s email address carefully. It may contain the name of a legitimate company but with additional or misspelled information (e.g.,
info@drop-boxing-authorized.com).Domain Mismatch: Legitimate companies usually have consistent domain names (e.g.,
@company.com). Be cautious if the domain looks off.
4. Verify Links and Buttons
Hover Over Links: Without clicking, hover over links or buttons to see where they lead. Phishing links often direct to fake websites with unusual or long URLs.
Check for HTTPS: Ensure the URL starts with "https://" indicating a secure connection, although this alone is not foolproof.
5. Identify Requests for Sensitive Information
Be Skeptical of Login Requests: Reputable companies will never ask you to enter your email username or password through an email link.
Verify via Official Channels: If in doubt, contact the company directly using official contact details, not those provided in the email.
6. Take Action if You Suspect Phishing
Do Not Open Suspicious Emails: Avoid opening any emails that seem dubious or unexpected.
Forward to IT Department: Send suspected phishing emails to your IT department for further investigation.
Report the Email: Follow the instructions in your organization's Knowledge Base to report phishing attempts.
Additional Information
For more information on phishing and how to protect yourself, consider exploring the following resources:
If you encounter any issues or need further assistance, please contact the Technical Service Desk by submitting a ticket at help.fscj.edu
Â