phishing prevention best practices

Phishing Risks And Prevention: 6 Basics

who this class is for

Employees and managers

Test your knowledge with a quick test and earn a free micro-certificate

Shop for etiquette, behavioral, and contextual signs

About this micro-class

Avoiding phishing is crucial for maintaining our company’s security and vigilance is our first line of defense.

Rules for Avoiding Phishing

1. What is Phishing?

Phishing is a cyber-attack where attackers use deceptive tactics to trick individuals into divulging sensitive information, such as usernames, passwords, or financial details.

2. Common Phishing Methods

Email Phishing

Be cautious of unexpected emails, especially those requesting personal information or containing suspicious links.

Spear Phishing

Personalized attacks targeting specific individuals using information gathered about them.

Smishing (SMS Phishing)

Similar to email phishing but through text messages.

Vishing (Voice Phishing)

Attackers use phone calls to trick individuals into providing sensitive information.

3. Signs of a Phishing Attempt

Generic Greetings

Phishing emails often use generic greetings like “Dear Customer” instead of addressing you by name.


Be wary of messages that create a sense of urgency, such as threats of account closure or loss of access.

Mismatched URLs

Hover over links to check if the destination URL matches the displayed hyperlink.

Legitimate companies use secure and consistent URLs.

4. Protect Yourself

Verify Requests

If you receive an unexpected request for sensitive information, verify it with the concerned department using established communication channels.

Use Multi-Factor Authentication (MFA)

Enable MFA wherever possible to add an extra layer of security.

Educate Yourself

Stay informed about the latest phishing techniques and tactics. Knowledge is a powerful defense.

5. Reporting Incidents

Report Suspicious Emails

If you come across any suspicious emails, immediately report them to your IT department or supervisor.

No Fear of Reporting

There’s no such thing as a silly question or report. If you’re unsure, it’s better to ask.

6. Continuous Vigilance

Stay Informed

Cyber threats evolve, so it’s crucial to stay informed about the latest phishing trends.

Regular Training

Companies should conduct periodic security awareness training to keep everyone updated on best practices.

Test your knowledge with a quick test and earn a free micro-certificate

Shop for etiquette, behavioral, and contextual signs

related micro-classes