Protect Yourself. Protect Your Organization.
How to Identify a Spam Email
Spam emails are unsolicited messages that may attempt fraud, steal information, or deliver malware. Watch for these warning signs:
Suspicious Sender
- Unknown or unusual email address
- Display name doesn’t match the sender
- Strange or random-looking domain
Urgent or Threatening Language
- “Act now!”
- “Final warning!”
- “Your account will be suspended!”
- “Immediate payment required!”
Scammers create urgency to pressure you into quick action.
Too Good to Be True Offers
- Prize winnings
- Large refunds
- Crypto or investment guarantees
- Huge discounts from unknown sites
If it sounds unrealistic, it probably is.
Suspicious Links
- Hover over links before clicking
- URL doesn’t match the company name
- Slight misspellings (e.g., amaz0n.com)
Never click suspicious links.
Unexpected Attachments
- Files you didn’t request
- Invoices you weren’t expecting
- Unusual file types (.exe, .zip, .html)
Attachments may contain malware.
Requests for Sensitive Information
Legitimate organizations rarely request sensitive information by email.
Be cautious if asked for:- Passwords
- Banking details
- Verification codes
- Personal identification numbers
How to Report Spam
For Work Email
- Do NOT click links or download attachments
- Use the “Report Phishing” button (if available)
- Notify your IT or Security Team
Delete only after reporting
For Personal Email
- Click “Report Spam” or “Report Phishing”
- Delete the email
Reporting helps protect others.
If You Clicked or Responded
Act immediately:
- Change your password
- Enable or verify MFA
- Contact IT/Security
- Monitor your account for unusual activity
Quick Reminder
STOP → LOOK → THINK → REPORT
Security awareness is everyone’s responsibility.