Phishing remains one of the most common and dangerous cyber threats, with attackers using deceptive emails, messages, and fake websites to steal sensitive information like passwords and credit card details. According to the FBI’s Internet Crime Report, phishing is the top-reported cybercrime, costing billions annually.

 

Here’s how to stay protected:

1. Spot the Red Flags

Phishing scams often feature:

Urgent language (“Your account will be suspended!”)

Unrealistic promises (“You’ve won a free iPhone!”)

Slightly altered sender addresses (e.g., support@paypa1.com)

Fake websites mimicking legitimate login pages

Tip: Hover over links to preview the actual URL before clicking.

 

2. Avoid Suspicious Links & Attachments

Don’t click on unexpected links or download attachments from unknown senders.

Type URLs directly into your browser instead of clicking embedded links.

 

3. Enable Multi-Factor Authentication (MFA)

Even if your password is compromised, MFA adds a security layer—such as a fingerprint, a one-time code, or a physical key.

Pro tip: Use authenticator apps like Google Authenticator instead of SMS for better protection.

 

4. Verify Before You Trust

Legitimate organisations don’t request sensitive info by email. When in doubt:

Call the company using a verified number.

Visit their official website directly—not through links in the message.

 

5. Keep Software Updated

Enable automatic updates for your operating system, browsers, and security software to patch vulnerabilities.

 

6. Use Strong Passwords & a Password Manager

Avoid reusing passwords. Tools like Bitwarden or 1Password generate and store secure logins for you.

 

7. Stay Informed

Regularly educate yourself and others. New phishing tactics emerge daily—including AI-generated voice scams.

 

Been Phished?

Act fast:

1. Change your passwords

2. Enable MFA

3. Scan for malware

4. Report to your bank or authorities

Stay alert. Stay secure.

Have you spotted a phishing attempt recently? Share your story below!