Modern Day Phishing

  • Home
  • Modern Day Phishing
Modern Day Phishing

Phishing Awareness & Response Checklist

Provided by Nugravity Security Awareness Training (SAT)

1. Recognize the Red Flags

Before clicking, opening, or replying — pause and inspect:

  • The sender’s email address doesn’t match the company domain.

  • The message creates urgency or fear (“Act now!” “Account suspended!”).

  • There are grammar, spelling, or formatting errors.

  • The message contains unexpected attachments or links.

  • The sender is asking for confidential information or payment changes.

  • The tone or phrasing feels unusual for that person or company.

2. Verify Before You Trust

When something seems off — validate it through trusted channels:

  • Do not reply to the suspicious message.

  • Call or speak directly to the individual using a known phone number.

  • Do not use contact info (phone, email, or links) listed in the suspicious message.

  • Check previous legitimate correspondence to compare writing style or signature.

  • Ask your IT or security team to inspect the email headers if uncertain.

3. Handle Links and Attachments Carefully

Avoid accidental compromise:

  • Hover over links to preview the actual URL — verify it matches the sender.

  • Never open attachments unless you are expecting them.

  • Use your company’s approved file-sharing tools instead of email for sensitive files.

  • Do not enable macros or “allow content” in Office files from unknown senders.

4. Respond Quickly if You Suspect Phishing

Immediate steps reduce damage:

  • Disconnect your device from the internet if you clicked a suspicious link.

  • Notify your IT department or security provider immediately via the Nugravity Portal in your systray or by sending an email to secure@nugravity.com.

  • Change your passwords (especially email and banking credentials).

  • Report the phishing email using your organization’s reporting tools or “Report Phish” button.

  • If banking information may have been exposed, contact your bank immediately.

5. Prevent Future Incidents

Build a culture of vigilance:

  • Enroll staff in Nugravity’s Security Awareness Training (SAT).

  • Schedule quarterly phishing simulations to test response readiness.

  • Ensure multi-factor authentication (MFA) is enabled for all accounts.

  • Keep all systems, browsers, and antivirus software up to date.

  • Maintain offline backups of important files.

Remember:

“Technology stops many attacks — but awareness stops the rest.”

Leave a Reply

Your email address will not be published. Required fields are marked *

© Copyright 2021, Nugravity Canada