Oops... you've been phished!
Do not worry though, this time it's only an exercise
Your company is raising awareness of the problem of phishing emails; you have been directed here because you have followed a simulated phishing link sent by your company.
Remember these key rules to protect you and your company online
There are many ways cyber criminals will try to scam you and your company, so be vigilant, stop, and think before clicking. Please take a moment to review the following guidance on phishing and how to protect you and your company from this threat.
1
Stop before you click!
Hover your mouse over links to check their real destination. If in doubt, don't click it.
2
Beware of attachments
Ensure you check the source of attachments before you download.
3
Verify suspicious emails
Contact the sender through a different medium, such as the company's website.
4
If in doubt – ask
Ask your IT or security representatives if you're unsure. Better safe than sorry!
About phishing
What is phishing?
Phishing is an attempt by a cyber criminal to trick you into clicking on a link, downloading an attachment, or giving away your personal information, often by pretending to be someone you know, or masquerading as a trusted brand.
Why awareness matters
Phishing is the most common way that an email account is compromised and is one of the top three ways a ransomware attack starts. Awareness enables you to spot common tactics and prevent cyber attacks.
How can I recognise a phishing message?
1
The sender of the email
The sender’s name and email address should be the first thing you look at. Signs that it could be fraudulent include it containing a public domain like gmail.com, or where the domain name in the address is misspelt. If you’re unsure, do not open the email – instead, report it.
2
The format of the email
Phishing emails can look very convincing, but when compared to a genuine email, discrepancies can become apparent particularly in the use of fonts and grammar. Legitimate messages, especially from businesses, rarely have spelling mistakes, or poor grammar.
3
The nature of the email
Phishing emails have common themes, including problems with your account or payment, policy changes, or payments that need to be made urgently. All are designed to evoke a sense of urgency, or create curiosity. Before you react – stop, think, and ask for help if unsure.
4
The actions of the email
Ensure you always scrutinise the web address of links by hovering over them and compare their destination to the company's actual web address. We also advise that you never open an attachment unless you are fully confident that the message is from a legitimate party.
How you can help
If you get an email that doesn’t seem right, take the time to discuss the email with your colleagues, and raise it with your IT representatives.
If in doubt, don't trust links and attachments in emails and never give out personal credentials.
