Phishing is a type of social engineering attacks often being used to steal users’ personal data such as login credentials, credit card information, phone number, etc. Phishers usually masquerade as a trusted entity and dupe a victim into opening an email, instant message, or text message. The recipient then got tricked into clicking a phishing link which may redirect to a login page to steal your login information, or get you to malware as part of a ransomware attack.
Security Tips on spotting a phishing email
(1) Examine the sender address carefully
Spoofing the sender’s display name is a commonly used phishing tactic. You may examine the sender address by clicking on the display name. If you found the sender address looks suspicious, do not click on the links or open the attachments in the email.
Example of a suspicious sender address which does not match the display name
(2) Beware of subject line requesting for urgent action
Phishing attacks have always targeted people’s emotions. Malicious emails usually use urgent requests to trick victims into clicking the embedded links.
Here are some examples of subject lines to be cautious of:
• Urgent Action Required
• [Urgent] Your Account will be Deactivated after 24 hours
• Change of Password Required Immediately
• Urgent need your help!
(3) Spelling and grammatical errors spotted in message text
“Spam filter” is an email security protection solution which looks out for various keywords and phrases commonly found in phishing emails. To bypass the security check of “Spam filter”, phisher may misspell some relevant words.
Example of a phishing email marked as “Spam”
(4) Think twice before clicking any link or inputting personal information
Pay attention to the website you are being directed to. Phishing emails always take you to fake websites where you will be asked to login or enter your personal information.
Be alert and stay safe from phishing attacks.
For further information or assistance, please contact the IT HelpCentre (Tel: 2766 5900, WhatsApp/WeChat: 6577 9669).
