Have you received a suspicious email asking you to take urgent action?
What is Phishing?
- Phishing is contact made by email.
- The sender impersonates well know companies such as banks.
- The purpose is to get you to click on a link and enter personal details or open/download an attachment.
- The request will often be something to encourage you to take action, such as ‘Verify your details or your account will be locked’ or ‘Click the below to gain access to your account’. They hope that the recipient will think they need to act urgently and so respond immediately without thinking.
- These are often sent to thousands of email addresses in the hope that some people will take action. Therefore they don’t usually contain personalised information and will use terms such as ‘Dear valued customer’.
Protect yourself and your business from Phishing
- Look out for familiar language or tone and casual and informal wording, there may also be poor grammar and spelling.
- Remember, we will never ask you to enter your full PIN and password details onto the website.
- When you receive an email, check it for signs that it may not be from the company it appears to be from; is the email address the same as the one the company usually use?
- Look out for any prompts to click on links or to download a file. Something like ‘Verify/update your account details’ is likely to take you to a copycat website to fill in your confidential details.
- Never respond to any suspicious emails and don’t click on any links or attachments within them.
- Check if the email is personalised, does it have information like your name, your postcode or part of your account number? If there is no personalisation at all treat it with suspicion.
- If you receive a suspicious email you can report it to us by forwarding it to firstname.lastname@example.org.
Always think twice and make double checking second nature
Take Five to stop fraud
Take Five is a national campaign that offers straight-forward and impartial advice to help everyone protect themselves from preventable financial fraud. This includes email deception and phone-based scams as well as online fraud – particularly where criminals impersonate trusted organisations.