What happens if you open a phishing email?
In most cases, nothing. Phishing emails work by appearing as emails from legitimate senders but containing malicious content. If attackers try to change the way their emails are sent or front-load their emails with malware or suspicious attachments, email clients are far more likely to flag them as spam or potential cyberattacks, which makes them less likely to land inside their target’s inboxes.
So, if you open a phishing email, there’s no need to panic yet. More sophisticated attackers may glean information about you when you open their phishing emails. These details include your IP address, the operating system (OS) that you use, and your general location. However, these details alone won’t be enough to use it for identity theft or to compromise your security the way that a phishing attack might intend.
4 steps to take after opening a phishing email
Once you open a phishing email, don’t interact with it further. But it’s not a good idea to just close the email and forget about it. Here are the following steps you should take to protect yourself:
1. Mark the email as spam
Marking phishing emails as spam helps an email client like Gmail or Yahoo Mail to identify any attackers, networks, and devices sending out phishing attacks. By marking a phishing email you’ve opened as spam, you’ll be helping increase the level of security for yourself and your organization, and this method is more effective than just unsubscribing.
2. Report the email to your IT department or company
Report phishing to your IT department immediately if you’ve opened a phishing email on a company email account or network. The email could be an attempt to get sensitive data or spread malware on your company’s network. Immediately notifying your IT department becomes crucial, particularly if you work at institutions that handle large volumes of sensitive information, like major credit bureaus. A scammer might try to impersonate your company or a specific individual, and your IT department will be able to tell you if you’ve received a phishing email.
3. Don’t reply or click on links or attachments
Phishing emails often contain suspicious links, ask for information about your online accounts, or have malicious attachments that can target your sensitive information and send you to fake websites. Such URL phishing attacks are relatively common, so make sure to not click on a spoofed link/URL.
4. Delete the email
If you’ve followed all the steps above, delete the email you received immediately. Keeping phishing messages in your email client any longer than necessary increases the risk of accidentally opening them again and clicking on their malicious links or content, which can further jeopardize your safety.
What to do if you click on a link in a phishing email
If you’ve accidentally clicked on a phishing link, here are the following steps you should take:
- Change your credentials. Changing passwords and other login details ensures that the attackers won’t compromise important data such as information about your bank accounts or your social security details.
- Scan your device for malware. In some cases, clicking on phishing links can also result in malware being downloaded on your computer. Use anti-malware software to scan your device and don’t do anything online until the issue is resolved.
- Disconnect your device from a network. This step ensures that the attacker won’t be able to access information on your other devices, potentially opening you up to different types of cyberattacks, and your device won’t spread malware to others.
- Delete downloads from a phishing email. If you click on a phishing link and it tries to download software or files on your computer, either interrupt the download immediately or delete the files from your computer once the download is complete.
How to recognize phishing email scams
Knowing what to do when you’ve opened a phishing link or clicked a suspicious email is good, but preventing any interaction with them is better. Fortunately, you can watch out for some telltale signs that an email you’ve received may be fraudulent even before you open it.
- Sound of urgency. Phishing emails often encourage you to open or interact with them immediately, often with a false alert or notification from a seemingly legitimate source.
- Misspelled grammar. Like spam emails, phishing emails can contain obvious typographical errors that emails from legitimate senders will not have.
- Check the sender’s email address. Phishing emails will try to imitate the email addresses of legitimate sources. Always check the sender’s email address closely because there might be some errors in the email address.
- Requests for personal information. Phishing messages will ask for information about you, your online accounts, or other sensitive data.
- Unrealistic offers. Any deals, limited-time sales, or free vouchers that request a text message before you can claim them can often lead to phishing scams. Delete the suspicious message immediately.
In most cases, your email client does a good enough job recognizing phishing emails, typically sending them to your spam folder. However, knowing the signs of a phishing email (or using advanced phishing email detection) increases your security.
