4 Best Practices for Email Phishing Attacks

Email Phishing

With companies continuing to work from home, it’s important to remind them about best practices for email phishing. As it was last reported that 41% of companies have experienced more cyberattacks amid COVID-19, according to SIA.

Here are 4 Best Practices to keep in mind for email phishing attacks:

  1. Email Urgency: Does the email create a sense of urgency indicating that you should sign immediately and that 20% of employees have already responded.
  2. The from email address: Does it come from company domains? This is a good place to check while attempting to determine if an email is legitimate. Keep in mind that it is possibly to make the from email address seem like it is coming from a legitimate company email address so you can’t solely rely upon this.
  3. Company changes: Does the email indicate any kind of announcement about new employee handbooks or new policy changes? Most cases, an HR team will make the company aware of any new changes. If they haven’t reached out, this could be a red flag.
  4. The links in the email: Some links could be from a legitimate website.  But I would try and think about the programs your company has used. For example, if the links are to a SharePoint file, does anyone within your organization share files via SharePoint? This could be a red flag indicating this is malicious in nature.  More than likely, the people sending this malicious email have some kind of malicious file hosted on this website so even though the website is good, the file hosted on it is bad.

Please keep all of these things in mind as you attempt to evaluate emails you receive. If you are not sure about any email you receive, I would recommend you go ahead and report the email to your IT Department.

Looking for an IT support to help with these? Contact Amerit today to see how we can help you find the right person for you!