Should I Click It?

3 questions to ask yourself before you click on a link in email or text message.

We’ve all received those unexpected messages with suspicious links. Whether it’s from your streaming service, your CEO, or a billing agency, you’re likely receiving emails or text messages weekly, if not daily, inviting you to click on a link. The problem with these links is that hackers could be on the other end, posing as companies and people you know in an attempt to trick you.

So, how should you know when not to click? Ask yourself these questions to stay safe.

1. Is there another way I can reach out to the person/organization?
Dive Deeper
More Details - If your streaming service or someone you work with sent a text message to you, can you use another method to reach out to them and confirm the text is indeed from them?

Example - For instance, if you recieved a text from a company that you buy services from (cable, phone, internet, bank, streaming service, etc.), instead of clicking on the link, get a phone number from your last bill. In case of a message from an executive at your company, look for their contact information in your internal directory. Use that contact information to reply to their request instead of engaging with the text message.
2. Does this email address make sense?
Dive Deeper
More Details - If you receive a message about checking the status of your online order, renewing your subscription, verifying your account, or something similar, check the email address itself. Does it contain many numbers/letters, or is it from what appears to be a personal email address, e.g. Gmail, Yahoo, etc.?

Example - For instance, if you get an email or text about your favorite store having a “VIP Sale: Extra 30% off,” instead of clicking on a PDF or any linked text within the email, close out of that message and type the company’s URL into your browser to look for the sale on their website. Use companies’ verified applications to check the status of shipping and your account.
3. How can I double check if the link is safe?
Dive Deeper
More Details - If the sender’s address looks legitimate, and you want to click on a link or hyperlinked text, have you also used a URL checker to confirm it’s safe?

Example - For instance, if you get an email or text message from an organization where you belong, e.g., your child’s school, church, athletic club, etc., instead of trying to inspect the link yourself, copy/paste it into a trusted URL checker, such as Google’s Safe Browsing site.


Pro Tip - Only reset your password if you requested the reset.

Typically, companies won't proactively email links to reset your password without you requesting it. If you want to reset your password, make the request directly on the organization's application or website.

While we’re only offering three simple questions, there are other key indicators that could help you to identify an unsafe link, such as grammar or spelling issues, branding that looks off, a message that is strangely vague, or an urgent and unexpected request. In these cases, don’t click on the link or open attachments, even if the request is from someone who claims to know you.

When in doubt, don't click. Or, at least, phone a friend and ask, "Should I click on it?"

This cyber awareness message was brought to you by the cool, cheerful, and deep crew at DeepSeas. DeepSeas is a cybersecurity company on a mission to provide peace and calm to our clients by transforming their cyber defense programs through Managed Detection & Response (MDR), CISO Advisory, and offensive security services.

Get to know us: deepseas.com