Three steps to catch the phish

Rens van Dongen
Feb 13 · 2 min read

Scammers send millions of phishing emails every day. How to spot them in your inbox? Check for legitimacy, monitor your emotions, and switch to verify. I’ll explain these three tips to keep you secure.

First, check for legitimacy.

Scammers usually include slightly wrong URL’s or have email attachments that are uncalled for. Sure it’s interesting to take a peek in your company’s payroll sheet, but how likely would it be sent to you by mistake?

Often, scammers also make small mistakes in spelling or layout. Such cues are your red flags to watch out for.

Secondly, monitor your emotional buttons.

Does the message raise your stress levels (urgency)? Or does it invoke fear (intimidation), pride (flattery), empathy (worry) or FOMO (curiosity)?

If that happens, take a breath… and don’t overreact by clicking that link or responding right away. Just let that Nigerian prince wait a bit longer before transferring you his money.

And lastly, verify who the sender really is

…over a separate communication channel. If you’re in any doubt after checking and monitoring, switch channels to verify the sender’s identity.

Got an email from Bob? Then send a chat to Bob! Or vice-versa. And don’t forget to use the person’s contact details that you knew already, not the number that “Bob” gave you.

Rens van Dongen

Written by

Chief Information Security Officer (CISO) at iWelcome

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade