|Image Source: Common Craft|
You receive an email from your bank, Google, Apple, or another business that you do business with. Although logic tells you there's no good reason for them to be contacting you, you read on. Almost all of these emails have a few if not all of these flags.
- Action Required
- You are asked to log in
- Look for grammatical mistakes in the email.
- Check the link, but NOT BY CLICKING ON IT.
- Even if you do click on the link, it's not usually the end of the world. The damage is usually only done when you enter your logon credentials, that's what they are after.
- Even if you see the name of the bank or legitimate site in the URL, that does not mean it is legitimate.
Below is one email I received from a not real "Bank of America." The next graphic is an email I found in my SPAM folder. It is from a not real "Apple Store." It is exactly the same.
|Image Source: CommonCraft.com|
Don't be a victim.
- Understand how to identify phishing emails.
- Use complex passwords (P@$$w0rds @r3 e@sy 2 Cr3@t3 1F yu0 u2e PhR@s3$)
- Enable 2-step authentication ("Send me a text message with a unique code anytime I try to login).
- Use a password manager like Lastpass to securely store all your passwords. You can access Lastpass on your phone or from any computer.