« MedlinePlus for Librarians | Main | Digital Bytes: MailChimp, scheduling Facebook posts »

Is this email legit?

Spammers are always trying to trick you. They send emails crafted to look just like emails you might really expect to receive, and their goal is to convince you to do something like...

  • download/open an attachment containing a virus
  • click on a link which will take you somewhere that can infect your computer
  • click on a link which will take you to a page that looks legitimate and into which you will enter your personal information

Often these emails are very, very convincing. How can you tell if an email is legit? The Federal Trade Commission's Consumer Information site has some excellent tips on how to recognize and avoid phishing scams.

Recently, a couple of staff received some very convincing messages that looked like they came from Microsoft about their Office 365 accounts. When they weren't sure if they could believe the message, they contacted the Help Desk. (Smart move! We're always willing to help!)

It turned out these messages were indeed phishing attempts. They included a link to take action on the user's Office 365 account, but when you hovered over the link, it was clear the link was going somewhere other than Microsoft or Office 365!

Phishing email message

The takeaway? Be skeptical! Look at the details! When in doubt, call the Help Desk!

Want practice identifying phishing attempts?  https://www.phishingbox.com/phishing-iq-test

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.

Post a comment