Beware of a new variation of phishing email

A simple way of determining if an email is a phishing attempt is to move your mouse over the link(s) in it to see if they match what is on your screen. For example, if you get an email from Apple that says:

Use this link https://applid.apple.com to verify your account

You might move your mouse over the URL and see that the link is to company https://phishingRUs.com/ or something else.

But what if the URL is a URL shortening site, like http://bit.ly or http://dlvr.it/?

My advice: assume it is a phishing attack. It could be the real company, but most large organizations will not do this. (And if they do, they need to at least be explicit about it in the URL).

My general advice: if you are not sure or uncomfortable, assume it is spam or phishing and delete it.

Comments are closed.