What is phishing?

In today’s digital world cyber threats are everywhere one of the most common threats is phishing. Phishing is when someone sends an email with bad intentions to trick you into giving away sensitive information, downloading harmful files or doing something you wouldn’t normally do. They use social engineering techniques to exploit human trust. Examples include giving out your account credentials, downloading malware, transferring money, disclosing confidential information.

But how can we protect ourselves and our organisation from these attacks? Meet Sarah, an administrative assistant at a transport company. She’s about to face a common phishing attempt. Let’s see how she deals with it. Sarah receives an urgent email claiming to be from a trusted supplier requesting an update of payment details. But something doesn’t seem quite right. Sarah notices some red flags: the sender’s email address is slightly off, the company logo looks pixelated and there are a number of grammatical mistakes. These small details make a big difference in identifying phishing attempts. Instead of clicking the link or responding to the email Sarah takes the right step: She calls the supplier using the official contact information to verify the request. After confirming that the email was indeed fraudulent Sarah reports the phishing attempt to her company’s IT department, following proper security protocols.

Remember these crucial steps to protect yourself and your company! Always verify unexpected requests especially those involving sensitive information. Stay alert to inconsistencies like unusual email addresses or lowquality logos. Think before you click on any links or download attachments. Your vigilance is key in preventing scams and protecting our organisation!