Beware of emails asking for confidential information such as logon credentials!
As a reminder, results of our phishing assessments are reported to our Senior Leadership monthly. In June of this year, 12% of Hexion associates who received the Phishing Assessment email clicked on the link and entered their credentials, even though there were several indications it was a phishing email.
1. Are there spelling errors?
2. Be cautious with external emails, we have a note at the top of these emails in red.
3. Is there a sense of urgency or threat?
4. Are you familiar with the sender?
Remember, it is okay to be suspicious. If the message does not seem right, report it using the PhishAlarm button in Outlook. If that does not work, you can email the Service Desk at XXX.
It is important that we all remain diligent and cautious when clicking on links or downloading attachments (via web browsing or in emails). You not only can fortify to resist phishing attempts, but you also hold the key to providing our IT and Security teams with timely company-specific attack intelligence!