Phishing scams are becoming more sophisticated. For example, hackers may mimic (or “spoof”) an email address so the message appears to come from higher-ups and colleagues. Always be cautious and if the message sounds suspicious, e.g., your boss is asking you to wire transfer a large sum, contact the “sender” directly by phone to verify that the email request is legit, especially if you weren’t expecting it. Scan attachments with anti-virus software before opening. Report suspicious messages to your IT team and email provider. You can also ask your IT team to configure your program to prevent spoofing internal company email addresses.
Avoid clicking on sign-in redirect links in emails. Instead, use your internet browser to access the website directly via a bookmark or by typing in the URL to avoid being redirected to phishing links. This practice also provides reassurance that you’re on the correct site.
Also, be aware of phone phishing scams as hackers can also spoof phone numbers. If you suspect the call might be a scam, hang up and call the company directly.
Finally, never provide your login information or personal details to someone who contacts you.