Do’s and Don’ts for securing yourself against Email Spoofing

The Do’s

  • Icon

    Verify if from a known person or company

    In case the suspicious message is from a friend or relative, or seemingly from your own company, contact the person whom you know through a phone call to clarify whether they are the ones who have sent the text.

  • Icon

    Always update the firewall

    Install antivirus software, and use anti-spyware spam filters. They automatically block a suspicious website from opening when we click on a fake link.

  • Icon

    Always set up two-factor authentication

    Set-up two-factor authentication for your net banking account, social media accounts, and email accounts. In this method, after you enter the password and login ID in a website, you’re also asked to verify your identity through an OTP sent to your phone.

  • Icon

    Change your passwords every 90 days

    It is a good practice to use passwords that are difficult to guess. Good passwords are long, i.e. between 10-15 characters and will include:

    – Capital letters and small case letters
    – Numbers
    – Symbols, like @,#,$,%,&

  • Icon

    Remove your personal information from social media

    Remove information about your address, phone number, or any other personal detail from your social media accounts

The Don’ts

  • Icon

    Do not click on suspicious links

    If a link sent on email or message looks suspicious, do not click on the link if the link has spelling error, appears to have a duplicate name, or seems suspicious.

  • Icon

    Never click on links that begin with an HTTP:// address.

    Only place trust in websites that start with an HTTPS://; the ‘s’ in HTTPS:// stands for ‘secure’

  • Icon

    Never respond to spoofing emails.

    Do not click on the links provided in the message. Immediately delete the message once it is confirmed to be spam.

In the next section, learn about what you can do if your information has been compromised in an email spoofing attack

Next chapter