How to spot a phishing email 

Although most emails you receive throughout the day are safe, it's important that you be on the lookout for phishing emails. Phishing emails are designed to appear trustworthy, familiar and legitimate, but are actually malicious, often containing links or attachments that will cause harm or compromise sensitive information on the company's network. Phishing attacks continue to evolve and are one of the greatest security threats impacting organizations today.

Because it’s everyone’s responsibility to protect our company from cyber incidents, please review and keep in mind the following tips to help identify phishing emails before they cause harm:

• Pay extra attention to emails that display an external email banner.
• Verify that you recognize the sender and their email address. If the sender's email address appears strange, it may be a phishing email.
• Keep an eye out for emails that have poor spelling and grammar, request personal or sensitive information and have a high sense of urgency.
• Before clicking on any links within an email, hover over them to see if the URL that appears in the status bar on the bottom of the page looks trustworthy. If the URL that appears doesn't look familiar or match the link you're hovering over, do not click on it.
• If the email seems suspicious in any way, do not open any attachments or click on any links. 
• If you think you may have received a phishing email, report it to the cybersecurity team by clicking the 'Report this Email' button within the message's external email banner and delete it from your inbox immediately.

For more cybersecurity tips, best practices and ways to safeguard yourself at work, at home and while traveling, please visit eWeb/Cybersecurity or eWeb/Phishing.