Image

Don’t Fall for the Bait: 7 Questions to Spot a Phishing Email

March 10, 20252 min read

Image

Your inbox is likely filled with a mix of personal messages, work emails, newsletters, and promotional content. But hidden among them, you’ll probably find a few phishing emails - fraudulent messages designed to steal your personal information or financial details.

Phishing scams are more than just a nuisance. Clicking on a malicious link or downloading an attachment could expose you to identity theft, malware, or financial fraud. In fact, the FBI’s Internet Crime Report states that phishing was the most commonly reported cybercrime in 2023.

To protect yourself, ask these seven key questions before clicking on anything suspicious:

1. Who sent this email?

Scammers can fake the display name in the “From” field, but the sender’s actual email address often reveals the fraud. Hover your mouse over the sender’s name (or tap on mobile) to check the domain name - the part after the @ symbol. Look for subtle misspellings or swapped characters, like @micros0ft.com or @wallmort.com.

2. Are there typos or odd phrasing?

Legitimate companies carefully craft their emails, while phishing attempts often contain spelling errors, awkward grammar, or strange wording. If something feels off, trust your instincts.

3. Is there an unexpected attachment?

Email attachments can contain malware that infects your device. If you weren’t expecting a file - especially from an unknown sender - don’t open it. When in doubt, verify directly with the sender before clicking.

4. Are they asking for sensitive information?

Most reputable companies, including banks and government agencies, will never ask for passwords, security answers, or account details over email. If an email urges you to provide personal or financial information, it’s likely a scam. Always contact the company directly using their official website or phone number - not the information in the suspicious email.

5. Does the message create urgency?

Scammers rely on panic to trick you into acting fast. If an email threatens account suspension, legal trouble, or a missed deadline, take a moment to assess it rationally before clicking any links.

6. Is the offer too good to be true?

Winning a lottery you never entered? A once-in-a-lifetime investment? Huge discounts on high-value items? If an email makes an unbelievable promise, it’s probably a scam.

7. Does the link go where it should?

Before clicking, hover over the link (or press and hold on mobile) to preview the actual destination. If it doesn’t match the official website or looks suspicious, don’t click. Instead, navigate to the company’s website manually.

Stay Vigilant, Stay Safe

Phishing emails are getting more sophisticated, but taking a few extra moments to verify an email’s legitimacy can prevent costly mistakes. If an email seems suspicious, trust your instincts—delete it or verify it through official channels.

Cybercriminals are always evolving their tactics, but by asking yourself these seven questions, you can stay one step ahead and keep your information secure.

Youtube logo icon
Back to Blog

Disclosure:

Winnow Wealth, LLC (“Winnow Wealth”) is a Registered Investment Adviser. The information presented is not investment advice – it is for educational purposes only and is not an offer or solicitation for the sale or purchase of any securities or investment advisory services. Investments involve risk and are not guaranteed. Be sure to consult with a qualified financial adviser when making investment decisions. This content is intended to provide general information. It is not intended to offer or deliver investment advice in any way. Information regarding investment services are provided solely to gain an understanding of our investment philosophy, our strategies and to be able to contact us for further information.

All information has been obtained from sources believed to be reliable, but its accuracy is not guaranteed. There is no representation or warranty as to the current accuracy, reliability or completeness of, nor liability for, decisions based on such information and it should not be relied on as such. The views expressed in this commentary are subject to change based on market and other conditions. These documents may contain certain statements that may be deemed forward‐looking statements. Please note that any such statements are not guarantees of any future performance and actual results or developments may differ materially from those projected. Any projections, market outlooks, or estimates are based upon certain assumptions and should not be construed as indicative of actual events that will occur. Past performance is no guarantee of future returns. Different types of investments involve varying degrees of risk. Therefore, it should not be assumed that future performance of any specific investment or investment strategy will be profitable.

Additional Important Disclosures may be found in the Winnow Wealth Form ADV Part 2A which we will provide upon request. Investment advisory services also offered through Brookstone Wealth Advisors (BWA), a registered investment advisor. Winnow Wealth & BWA are independent of each other.