If you receive an email with these red flags, verify with the sender before clicking links or attachments.

Message Header Red Flags

• Unknown or unexpected sender
• Suspicious or misspelled domain name
• Email sent at an odd time
• Email sent to an unusual group of people

Message Body Red Flags

• Inconsistent style
• Bad grammar or typos
• Unexpected link or attachment
• Requests for personal, financial, or customer information

Think Before You Click

• Take caution when clicking on a link or opening an attachment.
• Hover your mouse over the link to ensure it goes to the expected website.
• Review the link for spelling errors.
• Never click links or open attachments from unknown senders.

Always inform your manager immediately if you receive suspicious email. Remember: If it’s too good to be true, it almost certainly is. Delete it!

Example Phishing Email Elements

Subject: URGENT ACTION REQUIRED: Direct Deposit System Update

Suspicious sender domain: secure-payment.com

Suspicious link example: secure-verify-payment.com

Warning signs include urgency, requests for account updates,