This was a phishing email.

But don't worry, it was just a test

Don't tell your colleagues for the next 24 hours. We investigate to what extent employees are alert to phishing emails and whether they fell for it.

No passwords have been changed, sent, or saved. In collaboration with your organization, we simulated a phishing attack to help you recognize these types of attacks faster and to inform you about the dangers of phishing and social engineering.

How could you have known it was a phishing email?

Sender (Name)

The sender may be known, but scammers can use any name as the sender. So, it is difficult to see, but if the sender is known, but not only at the e-mail address, be very alert.

Email address

An unclear or unknown email address may indicate that you are dealing with a phishing email. Often, they use an email address that is very similar to a known address.

Target

Many phishing scams contain a request to 'check', 'update' or 'complete' your personal information. You then must click on a link and log in. If this is the case, be alert.

Conviction

Often trying to pressure you by using latest warnings or emergency alerts. Or they try to make you so curious that you almost must click on the link.

The link

Links in fake emails can cause malicious software to be installed on your computer or lead you to a fake website. So never just click on the links in an email that you do not trust.

Login page

When you arrive at a login page after clicking the link, check whether the web address matches the official website. For example, by looking for the slash (/).

What are the risks

More than 90% of all successful hacks started with a phishing email. As a result, the organizations must do more to reduce the risk. The phishing simulation you have been given is one of many measures to counter this risk.


What is expected of you?

Forward suspicious emails to the IT department, or the department responsible for it. They can intervene and stop a possible attack.

By clicking on the link, you already run the risk of downloading a virus. Which by the way can also be hidden in pictures. Often the links lead to fake websites that ask to log in

Logging into a bogus website is risky as you may reveal your username and password. Websites that request your personal data are also risky. You must be alert, especially if that is more than necessary.