Ask yourself would you expect to get an email from Dan Kuntz or Chris Kimball full of grammatical errors?
Lets examine the indicators:
1) Address authentication
From: “Dr. DanKuntz”email@example.com (non-CLU email)
2) Spelling, grammar, punctuation and syntax.
- Kindly do these for me. (should be: kindly do THIS for me. However, your antennae should be going up when the first line expresses a sense of urgency)
- I’m in a meeting and I will not be able to talk to you on phone. (Should be: on THE phone.", again adding to the sense of urgency.
- can you confirm if you can get some? (and so on...)
In our orientations to new employees, faculty and staff we use the word: “Triage".
We have to triage every email we receive. This means to carefully examine each email to verify authenticity. On your mobile device this requires even more care.
Here's the rub. We're always eager to respond to an email from our bosses. Sometimes so eager that we fail to recognize the warning signs.
While most Cyber Security programs emphasize that humans are the weak link; we consider you the first line of defense. When you receive a suspect email -
Stop. Think. Connect.
- Reach out to the supposed sender to confirm the email is legitimate.
- Call the helpdesk @ x 3698 for immediate help.
- Forward to: "firstname.lastname@example.org".
The sooner you react, the sooner we can act.