Article

Reporting Spam

The state of Indiana workforce is regularly targeted with phishing messages. IOT has several different technologies in place to identify and stop phishing messages. These tools do a good job but hackers are creative and persistent. Their attacks occasionally find ways around our defenses and leave our workers as the last line of defense. Below are things to look out for and how to report an email as spam.

1. Spelling or grammar mistakes: If an email you receive claims to be from a well-known source but has clearly not been spell-checked, then it is likely to be a phishing message.
2. You can double-check whether a link is valid and will take you to the intended location by hovering your mouse over the link to see the address. If the address does not match the link, then it is not safe to click on. IOT places some security around all emails already, so when you hover over a link you will see it direct to fireeye.com. Look past that URL to see where the link is directed.
3. Threats are often used in phishing messages to create a sense of urgency and fear in the user and cause them to act quickly. For example, a message could be sent by a cybercriminal that appears to be from Microsoft, claiming that Windows has not been activated and that your computer will be shut down if you do not follow the link.
4. Receiving an email with informa¬tion regarding a free round-trip vacation or a $1,000 gift card is grounds for caution. It is highly advised to delete emails like these to avoid any chance of accidentally clicking on a malicious source.
5. Report spam by using the Report Message link in the top right of Microsoft Outlook