5) Never download the files or open any attachments when you suspect the e-mail is phishing. These documents could be programmed to access your hard drive.
6) Be cautious on all devices, not just your physical computer. Phishing isn’t limited to just e-mails, but may also target you on your phone with phony text messages and automated calls.
What if it appears a trusted friend or colleague is asking for sensitive information via e-mail? Some criminals engage in the highly targeted practice of spear phishing, which makes these type of e-mails appear nearly authentic.
Although it is more difficult to defend against, the following tips can help thwart spear phishers:
7) Be mindful of publicly facing information on your website—or even social media—which can give criminals additional details to make their attacks seem more realistic. Be watchful of what you post on social media, including pictures of your premises or information about upcoming trips.
8) When a subject line from a ‘friend’ appears suspicious, call them or send a separate e-mail to ask if it is indeed a legitimate message.
