Recently, one of our clients asked if unusual emails could mean their account was hacked, and it isn’t the first question we’ve received lately. The answer isn’t always straightforward, but often, it’s not a hack, but a phishing attempt.
What is phishing?
Phishing is when scammers send emails that look legitimate, trying to trick you into revealing passwords, financial information, or personal data. These emails often mimic banks, online stores, or even coworkers (which was the case this time). Read more about phishing from the FTC here.
Signs an email might be phishing:
-
Unexpected requests: The sender asks for sensitive information like passwords or payment details.
-
Generic greetings: “Dear Customer” instead of your name.
-
Suspicious links or attachments: Hover over links to check the real URL; don’t click on anything unfamiliar.
-
Spelling or grammar errors: Many phishing emails contain noticeable mistakes.
What to do if you suspect phishing:
-
Don’t click any links or download attachments.
-
Verify the sender: Contact the company or person directly using official channels.
-
Change your password: If you clicked a suspicious link or entered credentials, update your password immediately.
-
Enable two-factor authentication: This adds an extra layer of protection for your email account.
Bottom line:
Receiving a suspicious email doesn’t automatically mean your account is hacked, but it’s a warning to be cautious. Staying alert and following safe email practices keeps your inbox – and your data – secure.
