It is important that your business users understand how to action suspected scam emails. By following these do’s and don’ts, you can significantly reduce your risk of falling victim to email scams.
Actioning Suspected Scam Emails
Do’s:
- Do verify who the sender is by checking the email address carefully for any inconsistencies or misspellings.
- Do report suspicious or suspected scam emails emails to your IT support team or provider and ask them to investigate the email.
- Do trust your instincts – if something feels off, it probably is.
- Do contact the company or individual the email claims to be from directly through legitimate channels if unsure.
- Do CALL (not email) your IT support team IMMEDIATELY if you have clicked on any links or attachments, even if it appears nothing has happened.
- Do leave it to your IT support team to advise you on the status of the email and how to proceed.
Don’ts:
- Don’t ignore red flags such as poor grammar, generic greetings, or threats.
- Don’t use the contact information provided in the email to verify it’s authenticity.
- Don’t share the email with others in your organisation, even if it is just to “discuss” it.
- Don’t click on any links or attachments in the suspected spam email.
- Don’t respond to the suspected spam email.
Remember, it’s always better to err on the side of caution when dealing with suspicious emails. If ever in doubt, always reach out to your IT support team. They will be able to provide guidance and ensure that your workplaces IT security is maintained.
Interested in reading more about email scams? See our post here on common email scams you may encounter (with examples).
