Don’t Take the Bait
Phishing attacks are fraudulent email messages appearing to come from a legitimate source (e.g., your supervisor, HR, or your bank). These messages include links pointed to fake websites, or allow malicious programs to run in the background of your computer, in an attempt to collect private information.
It is impossible to stop ALL phishing emails from getting delivered, but you can minimize attacks. E-mail filtering can prevent a large number of these emails from getting to end users. When they do get through, it is up to the user to see it and determine whether or not it is a legitimate email. These are some items to look out for to protect yourself from phishing attacks:
- Verify any requests from your bank or financial institutions, especially if you have never signed up for email notifications from your bank.
- Be suspicious of email messages from individuals asking about employees or other internal information. If an unknown individual claims to be from a legitimate organization, try to verify his or her identity directly with the company.
- Do not provide personal information or information about your organization, including its structure or networks, unless you are certain of a person’s authority to have the information.
- Do not reveal personal or financial information in email and do not respond to email solicitations for this information.
- Do not send sensitive information over the Internet.
- Pay attention to the URL of a website. Malicious websites may look identical to a legitimate site, but the URL may use a variation in spelling or a different domain (e.g., .com vs. .net).
- Report the suspicious email to the real organization. Many banks have a legitimate website to report phishing scams, which allows them to inform other customers about current scams in rotation.
- Try to contain the suspicious email and do not forward it to anyone. If you believe you have received a phishing email within the workplace, DO NOT forward it to your supervisor. If you have not responded or clicked on any links, delete the e-mail. If you have clicked on a link, please call your IT department for further assistance. They will scan your workstation to verify malicious programs were not executed. If you responded to the email with information, report the incident to your supervisor and HR immediately.
source: Texas Systems Group © 2019
To access your AWP EAP services, call 1-800-343-3822. Your EAP is here to help with family, work, health and legal issues. EAP Services are provided at no cost and are 100% confidential.
Alliance Work Partners is a professional service of Workers Assistance Program, Inc.
Copyright © 2019 Workers Assistance Program, Inc.