What Are Phishing Emails?
Phishing emails look like legitimate messages from companies or people you trust, but they’re actually from online bad actors. These emails ask you for personal details or share instructions to go to fake websites where they can steal your data.
How to Identify Phishing Emails
-
Check who sent the email: If the email says it's from a well-known company, the email address should match the company’s name. Watch out for email addresses that look wrong or strange.
E.g.: rewards@amaz0n.com Here, you can see that the email is not from amazon.com but rather from amaz0n.com—the letter “o” is replaced with the number “0” -
Read the email carefully: Look for spelling mistakes, irrelevant references, or words that push you to act quickly. Offers that seem too good to be true usually are.
E.g.: "URGENT: Your subscription to email service is expiring soon! Click the link below to renew now and continue enjoying our services without interruption. Don't miss out on exclusive benefits!” -
Be careful with links: Move your mouse over any link in the email to see where it really goes, but don’t click it. If the web address looks odd or doesn't match the company's usual address, it might be a fraudulent link.
Eg.: Instead of directing you to your bank's official website (e.g., www.morganstanley.com), you notice that the link leads to a completely different domain, such as www.morganstanleysecure-login.com. - Don’t open unexpected attachments: Opening files from emails you weren’t expecting can be dangerous and may contain malicious software.
How to Stay Safe from Phishing Emails
- Use Neo’s Two-factor Authentication (2FA): Neo’s security feature, 2FA, adds a layer of security to protect your account(s) even if your password is compromised. You may refer to our help guide to set up 2FA.
-
Look out for the following:
- Sender email address: Always check the sender's email address to ensure it matches the organization's official domain.
- Links in the email: Before clicking, hover over the links in the email to see the actual URL. Be cautious of shortened URLs or URLs that look suspicious.
- Urgency creation: Phishing emails often create a sense of urgency, pressuring you to act quickly. Evaluate the situation before responding.