Home
> Services
>
Safe Computing
>
Phishing Scams
>
Identify a Phishing Email
Safe Computing
Identify a Phishing Email
Ask yourself these questions if you are unsure if you should click a link or respond to an email.
Have I given my email address to this company before?
If not, 99% of the time it is phishing email.
Is the To: line address to undisclosed-recipients or a large number of recipients?
A legitimate email from a business firm you have dealt with will usually be addressed only to you. If the text alludes to confidential information, but has several addresses on the To: line, it's definitely not legitimate.
Is the From: line address to my address?
If so, then it is a fake email.
Why would they be sending me an attachment?
Most attachments sent by people you don't know are viruses or spyware.
Does the website link look valid?
Even though it looks valid they could be sending you to another website. Even though a link displays the correct web address, it could take you someplace completely different. Don't ever click on a website link or an image without verifying that the link is legitimate- you could be redirected to an attacker's website. Carnegie Mellon University has developed a fun, simple way to learn about fake URLs with an online
interactive game. NSIT is not affiliated with the creation of this game or the ongoing research associated with it; however, we believe it is a good resource for anyone interested in protecting themselves from internet crime.
Last updated: 6/26/08