How to protect yourself against Email Phishing?

Email Phishing  will direct the user to click on a malicious link to visit a website where they are asked to update personal information, such as a password, credit card, social security, or bank account numbers, that the legitimate organization already has.

 

Email Phishing Office 365
Normal URL

The email looks ok and the email URL looks ok too.

Email Phishing Office 365
Bad URL

In the redirected website showing OneDrive, the “Open Document” URL looks suspicious.

Moreover, it is leading to revealing more confidential information.

Email Phishing Office 365

Protect Yourself from Email Phishing

  1. Be cautious about all communications you receive. …
  2. Do not click on any links listed in the email message, and do not open any attachments contained in a suspicious email.
  3. Do not enter personal information in a pop-up screen. …
  4. Use web-based URL link checker
  5. Install a phishing filter extension like Google Suspicious Site Reporter or Norton SafeSearch on your Google Chrome web browser
  6. For Microsoft Office 365, you can subscribe Office 365 Advanced Threat Protection (ATP) 
  7. As a final failsafe solution, you will need to backup Office 365. For this, you can consider Datto SaaS Protection for Office 365
Email Phishing Office 365

With Microsoft Office 365 Advanced Threat Protection (ATP), you are protected from email phishing. The Office 365 ATP will perform a sandbox abnormal behavior check on the suspected link.