Recognizing phishing attempts:
Check that the e-mail message is well composed with the grammar and spelling you would expect from the sender, whether it's your boss, your brother or your bank.
Does the e-mail ask you for personal information? Most organizations would never ask for personal information in an e-mail or ask you to "reconfirm" your password and account information.
Trust your gut! If something doesn't seem right, it probably isn't. If you are not sure and are worried that there is something urgent that needs your attention, then contact that company/organization as you normally would. Never use the e-mail links or any information from a suspected phishing e-mail (including the phone number!).
Understand that e-mail phishing works on unsuspecting people every day. Even e-mails that seem farfetched ("Send me $100,000 so I can give you my inheritance") work all the time, but those aren't the only e-mails that get sent. There are often crafty and well-constructed e-mails that require a close look to notice they are malicious. So take that second lok and check before you click, download, or enter your information.
