Phishing is Rampant, Don’t Take the Bait!

by | Cybersecurity

Phishing is the most common and most successful tactic of bad actors looking to cause mischief with your small business. An astonishing 91% of data breaches start with a phishing attack. Phishing is a sneaky method to lure you into disclosing your login/password credentials or financial data or downloading malware or other malicious software. The best line of defense to protect your business is constant vigilance and regular security awareness training. Check out this practical advice on how to spot, block, and report phishing attempts.

Article shared from The National Cybersecurity Alliance:

Fortunately, it’s easy to avoid a scam email, but only once you know what to look for. With some knowledge, you can outsmart the phishers every day.  

See it so you don’t click it.

The signs can be subtle, but once you recognize a phishing attempt you can avoid falling for it. Before clicking any links or downloading attachments, take a few seconds (like literally 4 seconds) and ensure the email looks legit. Here are some quick tips on how to clearly spot a phishing email:  

  • Does it contain an offer that’s too good to be true?  
  • Does it include language that’s urgent, alarming, or threatening?  
  • Is it poorly crafted writing riddled with misspellings and bad grammar? 
  • Is the greeting ambiguous or very generic?  
  • Does it include requests to send personal information? 
  • Does it stress an urgency to click on an unfamiliar hyperlinks or attachment? 
  • Is it a strange or abrupt business request? 
  • Does the sender’s e-mail address match the company it’s coming from? Look for little misspellings like or 
Uh oh! I see a phishing email. What do I do? 

Don’t worry, you’ve already done the hard part, which is recognizing that an email is fake and part of a criminal’s phishing expedition.  

If you’re at the office and the email came to your work email address, report it to your IT manager or security officer as quickly as possible.  

If the email came to your personal email address, don’t do what it says. Do not click on any links – even the unsubscribe link – or reply back to the email. Just use that delete button. Remember, DON’T CLICK ON LINKS, JUST DELETE.  

You can take your protection a step further and block the sending address from your email program. 

Here’s how to… 

Report phishing. 

Some email platforms let you report phishing attempts. If you suspect an email is phishing for your information, it’s best to report it quickly. If the phishing message came to your work email, let your IT department know about the situation ASAP. 

Here’s how to:

Need help updating your employees with security awareness training? We can help! Learn more about our partnership with Bullphish, a platform that helps you identify vulnerable employee activity with simulations and provides security training on current threat trends.

Online Shopping Safety Tips

Online Shopping Safety Tips

Black Friday and Cyber Monday are coming! While you are eagerly seeking out the best online deals, bad actors are eagerly planning to exploit your vulnerability during these peak online shopping days. The most successful attack method for bad actors is phishing for...

read more
Windows 8.1 End of Support

Windows 8.1 End of Support

After January 10, 2023, Windows 8.1 will be considered End of Life/End of Support by Microsoft. These distinctions are eventually assigned to older versions of hardware or software and mean they are no longer supported by their creator and will exist as a...

read more
Benefits of an IT Partner

Benefits of an IT Partner

While outsourcing is common in many areas of business such as HR, finance, and procurement, the most mature and common outsourced function for businesses of all sizes is IT (information technology). While you can hire a managed services provider to take care of your...

read more

Schedule a FREE Network Assessment

Let us showcase our experience, knowledge, and personal approach.  We will uncover some essential ways to keep your business and your people up and running.

  • This field is for validation purposes and should be left unchanged.