Phishing Indicators as per Securing the Human.
1. Check the email addresses. If the email appears to come from a legitimate organization, but the “FROM” address is someone’s personal account such as @gmail.com or @hotmail.com, this is most likely an attack. Also, check the “TO” and “CC” fields. Is the email being sent to people you do not know or do not work with?
2. Be Suspicious of emails addressed to “Dear Customer” or that use some other generic salutation. If a trusted organization has a need to contact you, they should know your name and information. Also ask yourself, am I expecting an email from this company?
3. Be suspicious of grammar or spelling mistakes; most businesses proofread their messages carefully before sending them.
4. Be suspicious of any email that requires “immediate action” or creates a sense of urgency. This is a common technique to rush people into making a mistake. Also, legitimate organizations will not ask you for your personal information.
5. Be careful with links, and only click on those that you are expecting. Also, hover your mouse over the link. This shows you the true destination of where you would go if you clicked on it. If the true destination is different then what is shown in the email, this is an indication of an attack.
6. Be suspicious of attachments. Only click on those you are expecting.
7. Be suspicious of any message that sounds too good to be true. No, you didn’t not just win the lottery.
8. Just because you got an email from your friend does not mean they sent it. Your friend’s computer may have been infected or their account may be compromised. If you get a suspicious email from a trusted friend or colleague, call them on the phone.