You get an email or text that seems to be from one of your company’s vendors. It asks you to click on a link to update your business account. Should you click? Probably not. This could be a phishing attempt.
To find out how much you know about phishing, choose the best response for each question or statement.
1. Which one of these statements is correct?
A. If you get an email that looks like it’s from someone you know, you can click on any links as long as you have a spam blocker and anti-virus protection.
B. You can trust an email really comes from a client if it uses the client’s logo and contains at least one fact about the client that you know to be true.
C. If you get a message from a colleague who needs your network password, you should never give it out unless the colleague says it’s an emergency.
D. If you get an email from Human Resources asking you to provide personal information right away, you should check it out first to make sure they are who they say are.
2. An email from your boss asks for the name, addresses, and credit card information of the company’s top clients. The email says it’s urgent and to please reply right away. You should reply right away. True or False?
3. You get a text message from a vendor who asks you to click on a link to renew your password so that you can log in to its website. You should:
A. Reply to the text to confirm that you really need to renew your password.
B. Pick up the phone and call the vendor, using a phone number you know to be correct, to confirm that the request is real.
C. Click on the link. If it takes you to the vendor’s website, then you’ll know it’s not a scam.
4. Email authentication can help protect against phishing attacks. True or False?
5. If you fall for a phishing scam, what should you do to limit the damage?
A. Delete the phishing email.
B. Unplug the computer. This will get rid of any malware.
C. Change any compromised passwords.