Phishing Attempts: How to Identify Them Correctly

In this article, discover the 5 steps to properly identify and deal with phishing attempts and avoid compromising your security.

What is phishing?

Phishing is a fraud technique used to obtain personal information in order to steal the victim's identity.
Fraudsters attempt to obtain credit card numbers, photocopies of ID documents, passwords, dates of birth, etc.

This widespread practice can be truly dangerous for the victim. Learn how to avoid and identify phishing attempts in 5 steps.

1. Check

Phishing emails try to impersonate companies you know and trust, such as Google, Paypal, DropBox, etc. Therefore, it is important to check the sender's address to ensure their real identity by hovering over their name.

Here are some examples of the type of email addresses that should raise red flags:

• google@sap-login.co
• dropbox@dropbox-online.net
• noreply87754373838@paypal-service.com

2. Read

When reading the email, pay attention to typos, spelling mistakes, and grammatical errors. These mistakes are excellent indicators of a phishing attempt, as no reputable company would allow such errors in a professional email, as they risk undermining their credibility.

An email addressed to "Mr./Ms./Ms." or another generic name should also raise red flags. Most brands personalize emails by addressing them directly to the customer.

Here is an example:

3. Analyze

If you detect a threatening or unprofessional tone, be vigilant!

Also, be on the lookout for emails requesting action from you; phishing attempts try to trap you by playing on the urgency and security aspect.

Here are the types of traps typically used by cybercriminals:

• Claim to have noticed suspicious activity or login on your account
• Include a fake invoice
• Claim to have to verify your personal information
• Encourage clicking on a link for payment
• Claiming that you are eligible for government assistance or a tax refund
• Offer a free or discount coupon
• Claiming there is a problem with your account or payment method

4. Don't click

As you can see, enticing people to click on a link is a very common phishing tactic. It's therefore best not to click on these links to avoid any phishing attempts.

Here is an example of a deceptive email with an incentive to click:

5. Report

You're probably wondering how to report this type of email. A procedure for reporting a phishing attempt does exist in Canada, although it can be a bit tedious.

You can reach the Canadian Anti-Fraud Centre at 1-888-495-8501 , Monday to Friday from 9am to 4:45pm.

Or by connecting to https://www.services.rcmp-grc.gc.ca/chooser-eng.html./

However, a new system is currently being developed, which should soon make it much easier to report this type of fraud. To learn more, click here .

In summary

As you can see, fraudsters use numerous tactics to attempt to retrieve victims' personal data. You now have all the tools you need to detect and avoid them. The important thing is to remain vigilant for any behavior that seems suspicious.

About Nexxo

Nexxo Solutions informatique is a company specializing in providing IT and technology services to Quebec businesses. Its mission is to offer Quebec companies IT services tailored to their needs. Acting as an external IT department, it handles all of a company's IT tasks, allowing it to focus on its business activities. It achieves this by collaborating closely with its clients and putting their interests at the center of its concerns.