We all know that feeling - an email arrives in your inbox, seemingly urgent, demanding action. But something doesn't feel quite right. Before you panic (or worse, click on a suspicious link!), remember that our Phish Hook tool is your first line of defense against phishing attacks. But not all emails need to be Phish Hooked.
When should you use the Phish Hook?
Anytime you receive an email that raises suspicion, it's time to engage your inner detective and determine if you need to utilize the Phish Hook. Here's a quick checklist to help you spot potential phishing attempts:
1. Hover Power: Do not click on any link, hover your mouse over it. Does the destination match what's displayed in the email? Phishers often disguise malicious links behind seemingly harmless text. If the link location looks suspicious or doesn't match the context of the email, Phish Hook it!
2. Call to Action Caution: Phishing emails often try to create a sense of urgency or pressure you into taking immediate action. Are you being asked to click on a link, download an attachment, or provide personal information? Be wary of emails that demand immediate action or threaten negative consequences. If your gut says something's fishy, Phish Hook it!
3. Sender Scrutiny: Take a close look at the sender's email address. Is it from someone you recognize? Does the domain name look legitimate (the part after the “@”)? If you're unsure, reach out to the sender directly through a known contact method (like their phone number or company directory) to confirm they sent the email. When in doubt, Phish Hook it!
Example: In the picture below, we are seeing an email containing no information, just a link. The subject contains Venmo which is a service not connected with MyName@htps.us. This is the type of email to Phish Hook it!
.png)
- Phish Hook: Use this for any suspicious email, especially those that mimic legitimate organizations or individuals. This allows our security team to analyze the email and take appropriate action.
- Mark as SPAM: This is a good option for unsolicited emails or those from senders you don't recognize that are clearly not phishing attempts. Marking emails as SPAM helps train your inbox to filter out similar messages in the future.
Unexpected Emails: Sometimes we find ourselves on email lists we didn't explicitly sign up for. Maybe you inadvertently subscribed to a newsletter or a website added you to their list. While these emails might not always be malicious, it's important to exercise caution. If you receive an email from a sender you don't recognize or weren't expecting, treat it with suspicion and Mark as SPAM!
Example: In the picture below, we are seeing an email from the Bureau of Education & Research a known organization which solicits for various workshops. Unfortunately, MyName@htps.us has been added to their mail list. This would be the perfect email to Mark as SPAM!
.png)
Remember: It's always better to be safe than sorry. If you have any doubts about an email's legitimacy, don't hesitate to use the Phish Hook.
Using the Phish Hook or Marking as SPAM is quick and easy:
- Simply click on the Phish Hook or Mark as SPAM button in your Gmail toolbar.
- That's it! You've done your part to protect yourself and our organization.
By staying vigilant and using the built in tools, we can all contribute to a safer and more secure digital environment.