What is phishing?
Phishing is one of the most common online threats faced by individuals and businesses.
Cybercriminals try to trick you into giving away your personal information, like credit card details, bank logins, passwords, or even to download malware.
They do this by sending fake messages that look like they’re from trusted sources, like companies or people you know, and these messages contain links to fake websites that look real.
How does phishing work?
Cybercriminals often send messages that seem urgent or important. These messages might:
- Claim there’s a problem with your bank account or tax return
- Pretend to be from your boss, government, or a well-known company
- Include a fake link that takes you to a lookalike website
- Ask you to click a link, download an attachment, or enter your login details
Once you enter your information, the attacker can use it to steal money, access your accounts, or even steal your identity.
How can you spot a phish?
Here are some common signs that an email, message, or website might be a phishing attempt:
- Too urgent – Messages that pressure you to act quickly
- Spelling mistakes – Many phishing emails have poor grammar or odd wording
- Strange links – Hover over the link to see the actual website it leads to
- Requests for personal information – Legitimate organizations will not ask for passwords or banking info by email
- Unfamiliar sender – If it’s someone you don’t know or the email address looks suspicious, be careful.