1. Look at the email address, not just the sender
Ensure the message is not sent from a public email domain; no legitimate organization will contact you from an
address that ends ‘@gmail.com’, not even Google. Legitimate emails from Google will read ‘@google.com’.
2. Never click on suspicious links or attachments, especially from unsolicited messages
3. Go to the source if you have questions about the validity of the URL or message
4. Check the website security
5. Create strong passwords on all accounts
6. Educate your coworkers and family members
7. Be careful with online posts; do not give away too much personal information