Excitingly, when holidays and festivals tend to approach, we get simultaneous offers on the name of these occasions via different means including Emails. However, when we try to click these links/offers, we get redirected to multiple other unearned and unpredicted links. These phishing emails might trick users into giving up sensitive information, approving fake invoices, or downloading malware that can go on to infect your pcs, network, or systems.
“Oops! something is phishy!”
Hence, Prevention is better than Panic – Secure yourself to avoid possible Phishing Attacks. Below points, though do not completely secure, but addresses the prevention.
Here’s How to be Safe from Phishing Emails:
1. Aware Yourself:
RE-READ the emails and be aware especially when you see emails having :
Forged email addresses – sender seems unusual to you
Requests for personal identifiable information (PII) including passwords, social security numbers, account numbers, OTPs, etc.
Words like “Urgent” — false sense of urgency, “Lottery” – how would you get the lottery if you have not applied for it!
Messages that contain threats to shut your account down
Poor writing or bad grammar.
2. Where to use your Emails:
It is very important to realize that anyone can use the Internet. This indicates spammers are also lurking on the Internet, looking for available email addresses to send spam to. If you make your email address public, others can send you spam or, worse, hack your account if you use a weak password.
In addition, Avoid using your important personal or business email address for temporary works like opening any online contest or service, such as applications, deal updates, etc. Many spammers keep an eye on these groups or emailing lists and sometimes even “purchase” these lists/mail addresses to harvest.
3. Do not reply to spam messages:
Spam messages are often malicious emails sent from unknown sources. These sources could be hackers attempting to gain access to their victims’ computers. NEVER respond to spam messages because this informs the spammer that the email address is active, increasing the likelihood that your email will be spammed on a regular basis.
Replying to spam emails, clicking on links within them on top of it, or even unsubscribing from them usually only informs the sender that they’ve discovered an active email address to which they’ll send more spam. Instead, mark the message as spam.
4. Keep your passwords strong and secure:
It is recommended to use unique passwords similar and easy to guess like our birth dates and patterns like name@123. Passwords should be changed at least once every 60 days, especially if you access and manage your email on a public computer. Passwords with a mix of letters and numbers are harder to hack. It should be difficult to guess the password.
You may check and validate your credentials compromised via Google Passwords, Microsoft Edge Platforms. Do NOT forget to change the password immediately if you find the credentials that have been compromised.
Another easiest way to validate if your email has been compromised by any data leaks/breaches is using https://haveibeenpwned.com/ .
Securing Emails can therefore provide protection from incoming email threats and possible phishing attacks and against unauthorized access.
Composed by Mr. Aaditya Khati, Manager – Security Operations at CryptoGen Nepal
CryptoGen Nepal consists of professional trained team members who are devoted to provide professional grade cyber security solutions such as Information System Audit, Vulnerability Assessment and Penetration Testing (VAPT), Security information and event management (SIEM) , Security Operations Centre (SOC), Incident Response, Information Security Awareness etc.
