PHISHING
ATTACKS
What is Phishing?
A type of fraud in which emails pretending to be from reputable companies trick victims into providing personal information such as passwords and credit card numbers.
A Prevention Checklist
of recipients open a phishing email and
about 1/3 of them
click the phishing link in the email.3
50%
Cybercrime costs U.S. businesses $8.64 million a year.1
$8.64 MILLION A YEAR
1
CHECK THE SENDER'S ADDRESS
When you receive an email, always check that the sender's email address looks legitimate. Lack of company details strongly suggests a phish.
91% of advanced
cyber attacks begin with an email.2
91%
2
EMAIL IS NOT PERSONALIZED
Be alert to emails that are not personalized.
Emails should address you by name.
3
VERIFY LINKS
Hover over any links in email messages and on websites to verify a link’s actual destination. Never click on links in unsolicited email messages.
Simply clicking on links in phishing emails can
install malware or ransomware.
4
CHECK FOR TYPOS
Emails with typos and poor grammar indicate a phish.
6
HAS HTTPS OR PADLOCK ICON
Make sure any website you visit that contains or requests personal information is secure. Look for https in the web address or a padlock icon in your browser window. If a site is not secure,
do not provide any personal data.
The most popular type of phishing email requests the user to update their password.
An average worker spends 28% of
their work week
on emails.4
28%
5
EMOTIONALLY MANIPULATING VERBIAGE
Never respond to unsolicited emails that request
personal information and use sensational phrases like
“ URGENT” or “FINAL NOTICE."
data breaches are financially motivated.
86%
*********