Back to top


How to Spot a Phishing Scam

Published: July 2017

With almost everyone on email and social media these days, it's a good idea to know about the dangers of phishing scams.

Have you been getting an outrageous volume of emails in your inbox with mysterious links? Have you fallen victim to a phone scam by an "IT employee" trying to help "prevent a data breach" on your computer?

Whether or not you have encountered these situations yet, it's a good idea to learn how to spot a phishing scam. Here are a few tips to help you before it's too late.

Woman working on tablet with a dog watching next to her.

Identity Protection, Reinvented

Your data is valuable. Time to treat it that way. Allstate Identity Protection helps you secure your data.

Learn more Enroll now

1. Watch Out for Urgency

According to the FBI, scammers often pressure victims to respond quickly, before they have time to think. Urgent requests for information could come in the form of an email, text message or even a phone call. Any threat that your bank, email, credit card or other accounts could be closed if you don't respond is likely a scam, says the Federal Trade Commission (FTC). The FTC urges consumers to never allow remote access to a computer to a caller or give credit card details over the phone.

2. Take a Close Look at that Email

Phishing emails often mimic a trusted source like a bank, credit card, favorite retailer or even your email provider. Always scrutinize the sender's email address. These emails may also be loaded with cryptic web links. Wired suggests hovering your cursor over the link to identify the actual link destination.

3. Never Give Out Personal Information

This should be a rule for email, text messaging, phone calls and social media platforms, even if you're connecting with a person you know or a trusted institution. According to the FTC, companies will never ask for sensitive information via email or text message.

4. Be on the Lookout for Bad Grammar

USA Today says spelling and bad grammar is a telltale sign of phishy communication. Large companies and organizations generally don't allow a mass email to go out with a number of errors.

If you think you've been targeted by a scammer, there are a few things you can do. The FTC recommends forwarding any suspicious emails to spam@uce.gov and to the company, bank or organization that the communication appeared to come from. If you spot a suspicious social media message appearing to come from your account, you should delete it immediately and change your passwords. You can also mark suspicious messages from friends as "spam."

Once you have secured your information online, then you can get back to surfing the Web and posting on social media more safely.

Related Resources:

Our pages are filled with helpful tips and information about the topics that most of us face in our everyday lives. We focus on safety and maintenance issues with regard to your home, auto, apartment, motorcycle, boat, small business, finances and more. Please recognize that a particular tip may not be effective in every circumstance and that taking preventive measures cannot guarantee any outcome. We encourage you to use your own good judgment about what's appropriate for you and your property and always consider safety.
ECC Monitor: OK