Home | News | Phishing emails – cyber security awareness

Phishing emails – cyber security awareness

Hand on keyboard

Many staff receive suspicious emails and report these, but occasionally one gets through, and an account is compromised. The email below is an example of a successful phish received by a member of staff in the last few days.

If you suspect you have been phished then contact the IT department, and then raise a Datix.

 Screenshot of phishing email - text in screenshot can be found below

Things to look out for:

  • Unusual email address, although this may be hidden
  • Subject line suggests that action must be taken as the password has expired, but in the main body it states that it will expire today
  • If you hover the cursor over the band below Caution, you will see a hyperlink, in this case to YouTube
  • The email is word in a way to create a sense of urgency: "will expire today"
  • If you hover the cursor over the button "keep safe password", you will see an unusual hyperlink, in this case to RogueTennant.com 

The Trust provides training and education on spotting a phishing email, which is applicable both at home and work, this is available through MetaCompliance the link is on EEAST24 quick links.

The IG team will also send out other cyber security and data security training via MetaCompliance emails (but the content can always be reached via quick links). 

Thursday 5th May 2022