Skip to main content

At some point, we’ve all received an email telling us we won a big cash prize, or we’ve been nominated for inclusion in a business “who’s who.” All you need to do is provide some personal information and maybe a check, and you’re all set.

Of course, it’s obviously a scam. However, studies have shown that most of us are overconfident when detecting a phishing scam. Almost every phishing scam starts with a seemingly innocuous email, however it is designed to trick you into providing valuable information.

Here are 10 types of phishing emails to watch out for in 2022.

  1. COVID-19 Information Scams – With more companies requiring employees to get COVID-19 shots, scammers are sending out phishing emails pretending to be from HR departments, requesting workers’ proof of vaccination. Links in the message direct receivers to a fake sign-in page where criminals can get their log-in credentials. Watch out for subject lines promoting vaccine requirements or asking for information to “register.”
  2. Unexpected Attachments – This is a typical approach for hackers. Never open an attachment you weren’t expecting, even if it’s from someone you know.
  3. Inconsistent URLs – If a web address within an email is different when you hover over it, it’s likely a phishing attempt.
  4. The “Action Required” Scam – Emails telling you to update your password or asking for account information is an attempt to gather information. Legitimate institutions will never request login or personal information via email.
  5. Misspelled Words or Poor Grammar – An email riddled with grammar and spelling mistakes should raise a red flag. It’s probably a phishing scam.
  6. Something is “Different” – If you regularly receive emails from a company, and they suddenly look “different,” be careful, it could be a phishing attempt.
  7. W2 Requests – You see these around tax time. Emails look like they come from your HR department or a high-level executive.
  8. Email from the CEO – Criminals have become masters at researching high-level executives and impersonating them. Never provide information or funds without confirmation!
  9. You Won!! – If you didn’t enter a contest, you probably didn’t win.
  10. Desperate Emails – When a random email shows up with a sense of urgency like “Immediate Attention Required” it’s suspicious. Check your account from a separate browser.

Educate your team to recognize the signs of a phishing attempt. If you receive a suspicious email, delete it immediately. Never click a link or download an attachment in an email. If you question the origin of an email, don’t reply, just contact your IT department right away.

Do you want to learn more? Give us a call today!  Let us help you to keep your company safe and your data secure.




Leave a Reply