Top tips for spotting an email scam, from a former hacker

Urgent Action Demands:

Be wary of emails demanding urgent action or threatening consequences unless you act immediately. Phishers often use this tactic to pressure you into making hasty decisions.

Grammar and Spelling Errors:

Pay attention to bad grammar and spelling mistakes in emails. Legitimate companies typically use spell-check tools, so errors could indicate a phishing attempt.

Unusual Greetings:

Emails with unfamiliar greetings or overly formal language may be suspicious. Colleagues usually use informal language, so be cautious if the tone seems off.

Check for Inconsistencies:

Look for inconsistencies in email addresses, links, and domain names. Verify the sender's address against previous emails from the same organization and hover over links to ensure they're legitimate.

Beware of Attachments:

Exercise caution with email attachments, especially if they come from internal sources and have unfamiliar file extensions like .zip or .exe. Most file sharing now occurs through secure platforms.

Guard Sensitive Information:

Be cautious of emails requesting login credentials, payment information, or sensitive data. Phishers may create fake login pages to trick you, so verify the legitimacy of the email before providing any information.

Avoid Too Good to Be True Offers:

If an email seems too good to be true, it probably is. Be skeptical of emails promising rewards or incentives, especially if you didn't initiate contact or the sender is unfamiliar.