Identify a phishing email

Today everyone is aware of phishing emails and is wary of links they receive in emails, especially if the email was unsolicited. Spammers are also aware of it and have improved the quality of the email. The normal identifiers such as bad spelling, grammatical errors blank To: field, vague subject etc. are no longer present. Often the email is targeted phishing email and everything about it is legitimate.

Note: Mobile devices often ONLY display the Name and NOT the email addresses. None of the information in the video is  visible on mobile devices and the steps are not possible .   In a targeted attack , The phisher often sends such emails when they expect you to be traveling and checking emails on your mobile device.

The following example was provided by a client who
A) attends many Zoom meetings a day
B) the senders name is known to the recipient;
C) It was addressed to the client
D) the body of the email looked very legitimate.

In the video below we have demonstrated a few methods to verify the legitimacy of the email. The video does not have audio, please refer to the points listed above the video.

1. The From: has a legitimate name but a fake email address. It should match the known senders email address.
   From: Legitimate Name <info@uefe.ch>
   
   
2. The To: address is legitimate and therefore it reached you.
   
   
3. Hover your mouse over the link and check the domain name it is the last text before the first forward slash
   
   
4. http://40pz5gz4.r.eu-central-1.awstrack.me/L0
5. Right click on the link ( VERY CAREFULLY ) Copy Hyperlink and paste it into notepad to look at the link in detail.