Basic Tips to Avoid Phishing & Scams

Don’t reply to unsolicited emails, texts, or calls asking for personal or financial info.

Never click links or open attachments unless you’re sure they’re safe.

Check the full email address, not just the display name—watch for misspellings or odd domains.

Watch for odd formatting or spelling, like “p@ssw0rd” or “acc0unt” to bypass spam filters.

Be suspicious of strange grammar, broken sentences, or random characters—these are deliberate tricks.

Don’t assume legitimacy just because the message uses company logos or familiar names.

Hover over links to see the true destination before clicking.

Watch for urgency, threats, or pressure to act quickly—common scam tactics.

Don’t trust caller ID or sender names—they’re easy to spoof.

Never send passwords, PIN's or verification codes via email or text.

Avoid clicking “unsubscribe” in suspicious emails—it can confirm your address is active.

Keep your software updated—scammers exploit outdated systems.

Use multi-factor authentication (MFA) wherever possible.

Don’t reuse passwords across accounts. Use a password manager to stay secure.

Log in only at official websites, not through links in emails or texts.

Treat every unexpected message as suspicious until verified.

Report anything strange to IT/security—don’t just delete it.