Any business can be targeted by a phishing attack, and most will be at some point, so it’s vital that you and your staff know how you can spot a phishing email. We know of a business that recently lost £22,000 to a phishing attack, and the scams are becoming more complex every day. In this post, we’ll explore how to use the DAC method for spotting phishing emails.
[youtube https://www.youtube.com/watch?v=zoE19ukNjMg]
Phishing Attacks
A phishing email is when a hacker sends you an email or a text message aimed at tricking you into providing information, such as usernames, passwords, or credit card numbers, or persuading you to click on an attachment that will infect your computer with something nasty. All this is aimed at eventually stealing money from you or your business. Years ago, scams often seemed laughably obvious and spotting phishing emails was easy. A time went on, phishing became so sophisticated that now, even I sometimes have to look twice at emails and think to myself, ‘is this genuine?’ – and I work in IT security. Check out our blog post for more information on what phishing is and how to prevent it. However, if one does make its way into your inbox, what are the ways to spot a phishing email?The DAC Method for Spotting Phishing Emails
The DAC method is a great way to spot a phishing email. It stands for Domain, Action and Content.Domain
The domain is the part of an email after the @ symbol. For example, if I worked for the BBC, my email address might be ‘[email protected]’. The domain here is ‘bbc.co.uk’. In personal email accounts, the domain is typically ‘hotmail.com’ or ‘gmail.com’. The first part of the DAC method for spotting phishing emails is the domain. Take a look at the email you received. What domain was it sent from? Recently, I received a phishing email that claimed to be from NatWest, a British bank. Of course, if you bank with NatWest and were to see this email, you’d probably automatically give it your attention; seemingly, you have an important message about your bank account. However, when I looked at who had sent the email, it had come from ‘[email protected]’. That is not NatWest. Any emails from the actual NatWest bank would come from their domain – ‘natwest.com’ – and not from ‘securesuite.net’. The domain that this email uses, ‘securesuite.net’, will have been created specifically to trick readers into thinking the email has been sent securely. We looked up ‘www.securesuite.net’ so you wouldn’t have to; there isn’t even a website for this company. So, by checking the domain, we can spot the phishing email immediately. This is especially important for things like banking or phishing emails that seem to come from within the company.Action
So now we move onto the A in DAC, which stands for action. What action is the email encouraging you to take? When spotting phishing emails, remember that all phishing attacks want you to take some form of action from that email, whether that’s sharing information, clicking a link or opening an attachment.- Links – a link will often take you to a page instructing you to enter some personal details.
- Attachments – some phishing emails have attachments, and things can get more tricky here.