(Video) The Nine Ways to Spot a Phishing Scam

Hello. My name is Roger.

Today, I’d like to tell you about the nine tips about how you can spot a phishing scam or a spear-phishing scam.

Spear-phishing is one of the cyber criminal’s best and most effective weapons, because it relies on us trusting someone who has sent you the email, and if that person has been compromised, then there’s a good chance that you will open an email that has a piece of bait in it that you are going to click on.

So how do you stop and how do you spot what is going on with a phishing scam? Well, in the email there could be spelling and grammatical errors, which usually means that they haven’t thought about it or translated it from a language to another language.

There could be misspelled URLs, so ANZ Bank might be AMZ Bank.

They might have spelled domain names differently. Same thing. It might be anz.com.com, for instance.

One of the other things about a phishing scam and any email that you receive, if it asks for personal information, then you have to question it. By questioning it, you then put yourself into a better frame of mind of whether that is going to be a phishing scam or not.

Another thing to look for is “Is the email too good to be true?” You could win $100,000 if you just fill in this form. Or, you can receive this over the internet.

Another way that the scammers use phishing to get you to do things is they’ll ask for the money to cover expenses, or cover costs, or cover taxes. This is notorious for the Nigerian prince scam, where they ask you, “We’ve got $42,000,000 and we want to get it out of the country, but you have to donate $10,000 so we can set it all up to send it to you.”

Another way that the criminals can use phishing is there’s an unrealistic threat in there. “We’re going to expose your information if you don’t give us something.”

Additionally, if it’s an email from a government agency, especially if I’m getting emails from the U.S. government when I’m not in America. Or, I’m getting email from the Australian government when I’m living in the U.S.

But one of the best things that you can utilize when you’re trying to avoid being a victim of a phishing scam is “Something quite look right.” And if it doesn’t quite look right, then there is a good reason for your psyche, or subconscious, to be able to say, “Oh, that doesn’t look right. I don’t think I’ll do that.” And that is one of your best protective systems that you could have.

So, nine ways to spot a phishing scam: mismatched URLs, misleading domain names, spelling and grammar, they ask for personal information, it’s too good to be true, or money, asking for money to cover expenses, unrealistic threats, they’re a government agency or posing as a government agency, or something doesn’t quite look right.

So, thank you very much.

[End of transcript]

Roger Smith is the CEO of R & I ICT Consulting Services, Amazon #1 selling author on Cybercrime, author of the Digital Security Toolbox and author of the SME Digital Security Framework.   Rapid Restart Appliance Creator.   He is a Speaker, Author, Teacher and Educator on cybercrime and how to protect yourself from the digital world. 

Roger Smith, is an educator. Teaching students at ADFA (UNSW) and showing them how vulnerable they are to cybercrime.

He is also CEO at R & I ICT Consulting Services Pty Ltd, an Amazon #1 author on Cybercrime and founder of the SME Security Framework. He is a Consultant who specialises in inexpensive and highly effective security strategies for small and medium businesses and not for profit organisations.

He has developed and authored the SME Security Framework and the Security Policy Training Course which are considered to be the definitive guides to helping SME's protect their organisation using the principles of Technology, Management, Adaptability and Compliance.