How to Spot a Phishing Email in 60 Seconds

Phishing attacks are becoming increasingly sophisticated. They no longer look like poorly written emails from distant royalty; they look like legitimate invoices, security alerts, or even messages from your coworkers.

Why Phishing Works

Attackers rely on two things: urgency and curiosity. By making you think something is wrong or that you’re missing out on something, they trick you into clicking a link or downloading an attachment before you have time to think.

The 60-Second Check

When you receive an unexpected email, run through these five checks:

1. Check the Sender: Does the “From” address match the display name?
2. Hover Before You Click: Hover over any links. Do they lead to the official website?
3. Analyze the Greeting: Is it generic (“Dear Customer”) or specific to you?
4. Look for Urgency: Does it demand immediate action to avoid a penalty?
5. Inspect Attachments: Are you expecting a file from this person?

For a more detailed breakdown, download our printable checklist below.