Common phishing lures and how to avoid getting hooked on a cyber scam
Phishing scams are among the most common methods of cyber attack. Learning to recognise phishing attacks is essential for protecting yourself and your organisation from fraud and financial loss.
Cybercriminals often pretend to be people you know, trusted brands, or official organisations. They send emails, texts, and social media messages hoping you’ll click malicious links or share sensitive information.
Up to February this year, the National Cyber Security Centre (NCSC) received over 39 million reported scams. They removed 210,000 scams across 380,809 URLs1. Many cyber attacks go unreported because people or organisations underestimate the threat or feel embarrassed after falling victim.
How to Recognise Phishing Attacks
Your data is valuable to criminals. Always be cautious when asked to share information.
- Do you recognise the email or text contact?
- Does anything seem wrong or out of place?
- Have others reported a similar scam?
- Were you expecting this communication?
- Are you being asked to share information?
- Have you received an unexpected link or attachment?
- Is the language urgent, threatening, or poorly worded?
Phishing scams are common on shared WiFi networks. Avoid public networks if possible.
Spotted a Scam Before It Bites?
If you receive a suspicious email, forward it to the Suspicious Email Reporting Service (SERS) at report@phishing.gov.uk. You can also report scam texts, emails, phone calls, and websites via the NCSC website.
Uh Oh… You Clicked a Phishing Email: What’s Next?
If you have clicked on a scam, stay calm and act quickly.
- Change all your passwords Use unique, strong passwords for each account.
- Set up multi-factor authentication (MFA) This adds extra security.
- Contact your IT department or supplier If your organisation does not have IT support, reach out to Risk Evolves.
- If you lost money, report it to Action Fraud online or by calling 0300 123 2040 In Scotland, contact Police Scotland.
Effective Advice
Phishing attacks remain a major threat to businesses and individuals.
Recognising phishing attacks is a vital skill for anyone who uses email, texts, or social media.
Key points to remember:
- Phishing can lead to serious data breaches and financial loss.
- Staying vigilant and checking for warning signs can help you avoid scams.
- Knowing what to do if you suspect a phishing attempt is just as important as spotting one.
Don’t wait until it’s too late.
Take proactive steps to protect your organisation and seek expert support if you need it.
Recommended reading
We have a library of resources to support businesses of all sizes and sectors, from articles to webinars and video tutorials. Here is some extra information on cybersecurity that we think will be useful: Looking beyond the headlines: Cyber threats across the supply chain – keeping information and securing data under lock and key with Cyber Essentials.
Your data deserves the best protection
Get in touch with our experts to learn how to recognise phishing attacks and safeguard your business.
Contact Us01926 800710
