Example Phishing Message

Below is an example phishing message.

On first glance, the message looks completely legitimate. The email signature is correct, the email looks correct, the message is something that you would expect to receive and the attachment seems benign. There is really only one large give away and that was the sender email address. In it you can see that the “gorgeandbell.com” is missing the “e”. Another more subtle hint that may not give it away but is a potential red flag is the vagueness of the message. “Amy’s” request has no specific information regarding the request, other than to look at the attachment.

Here are some quick tips to avoid falling into the trap and opening a phishing such as the one above:

1. Always hover over and check the underlying link before clicking. Ensure the domain matches the message. For example a message from Microsoft should have a URL that ends in .microsoft.com.
2. Check and verify the sender address. Make sure it doesn't have any spelling mistakes.
3. Don’t open any attachments unless you’ve confirmed that the message is legitimate.
4. Keep a close eye on content of the message. Does the message sit right with you?
5. If you’re ever unsure, call the individual and have them verify the message.