Scammers are getting quite crafty in the way they try to trick us. A method that is becoming quite popular among the cybercriminal world is using invoices. They send them to our email with specific information from an online invoice-creating product. Because we are getting better at not clicking links or attachments, these sneaky folks put in a giant button looking like a link to “My Documents” in hopes it appears less intimidating.
If you are not expecting an attachment or link in an email, you should consider it a phishing scam until you can prove otherwise. Contact the sender by phone and ask if it is genuine. More often than not, we should be expecting documents in our email messages, so an unsolicited one should most certainly be suspect.
Look for typos and incorrect grammar which can help you spot phishing. This is particularly true if the document is from a professional organization or is business-related. If a vendor sends you an invoice, it generally should not have misspelled words or poor punctuation.
If you are asked for sensitive information at any point when on the Internet, take a moment to consider if it’s an authentic request or could be phishing. Instead of entering it into a form that may pop up, go directly to the company’s website and log into your account that way.
Be wary and keep informed of the many ways scammers are attempting to trick us into giving up our information. Remember to stay vigilant and cautious of all incoming emails.