HOW-TO GUIDE

How to Spot a Phishing Email in 5 Seconds

Published on September 15, 2025

Phishing emails are fraudulent attempts to trick you into revealing sensitive information like passwords, credit card numbers, or bank details. They are the number one cause of data breaches. This simple guide will teach you how to identify a scam in seconds.

Example of a phishing email on a computer screen

The 5-Second Checklist to Stay Safe

You don't need to be a cybersecurity expert. Just check for these five red flags before you click anything.

📧

1. The Sender Looks Wrong

Don't trust the display name. Check the actual email address. Is it misspelled (e.g., `info@micros0ft.com`)? Is it a public email domain (like `@gmail.com`) for a company that should have a corporate one? This is a huge red flag.

2. It Creates a Sense of Urgency

Scammers use fear. Look for threatening language like "Your account will be suspended," "Unauthorized login detected," or "Urgent action required." They want you to panic and act without thinking.

🔗

3. The Link is Suspicious

Hover, don't click! On a computer, move your mouse over any link without clicking. The real destination URL will pop up in the corner of your browser. If the link looks different from the text or is a random string of characters, it's a scam.

👋

4. The Greeting is Generic

Your bank or any service you use will address you by name. Phishing emails often use vague greetings like "Dear Valued Customer" or "Dear Sir/Madam" because they send them out in bulk.

✍️

5. Poor Spelling and Grammar

Many phishing campaigns are created by non-native speakers. Obvious spelling mistakes or strange phrasing are a clear sign that the email is not from a professional organization.

Common Phishing Scams in India

Be extra cautious of emails or messages related to these common local scams:

  • KYC Verification: Fake alerts from banks or wallets asking you to "update your KYC" by clicking a link.
  • Electricity Bill Scams: Messages claiming your power will be disconnected unless you immediately pay a pending bill via a provided link.
  • Fake Job Offers: Unsolicited job offers that ask for personal details or a "registration fee."

What to Do If You Spot a Phishing Email

The golden rule is: **When in doubt, throw it out.**

  • Do NOT click any links or download attachments.
  • Do NOT reply to the email.
  • Mark the email as "Spam" or "Phishing" in your email client.
  • Delete the email permanently.