Verify the sender’s email address and domain carefully
Do not click suspicious links or open unexpected attachments
Type website addresses directly into the browser
Check for HTTPS and correct spelling in URLs
Be cautious of urgent, threatening, or too-good-to-be-true messages
Never share passwords, PINs, or one-time codes by email or text
Use strong, unique passwords for every account
Enable multi-factor authentication on all important accounts
Keep operating systems, browsers, and apps updated
Use reputable antivirus and anti-malware software
Review account activity and bank statements regularly
Confirm unusual requests through a trusted phone number or contact method
Train yourself and others to recognize phishing signs
Report suspicious emails or messages to your IT team or provider
Use spam and phishing filters in email settings
Limit the personal information you share online
Back up important data regularly
