Our attempt to distill standard phishing advice to the 3 main points for you to print for your office if you wish.
Download a PDF of this image here
Download the image directly here
1. Don’t trust unexpected links or attachments
- If you weren’t expecting it, don’t click it - even if it looks like it came from a company or someone you know.
- If a message says something like “You need to fix something in your account”, never click the link.
- If you’re worried, open your browser, type the website address yourself, and log in to check.
2. Don’t give out passwords or codes
- No real company will ever ask for your password or a code from your phone.
- Not your bank. Not runPCrun. Not anyone.
3. If you’re unsure, stop and check
- Call the company or person using a number you trust - never use contact details in the message.
- It’s always okay to ask someone for help first.