Hi,
I think the very first question is:
Is the email asking for confidential information like banc accounts,
usernames or passwords?
And remember the users that no one banc or internet site that you can
use to manage your money or buy things will ask for you information.
Best regards.

En/na Saeed Abu Nimeh ha escrit:
> Hi All,
> If I want to explain email phishing to set of user (novice,
> intermediate, and experts), can I summarize --let us say-- a list of 100
> questions that a user answers gradually to find if this email is
> phishing or not? Examples of questions I can think of:
> - does email contain html
> - does email contain java script
> - is there a mismatch between the url displayed in the email and the
> source link <a href>
> - does the email contain misspellings
> - does the email contain an open greeting (i.e. dear customer instead of
> dear j smith), etc.
> I was thinking of summarizing couple of hundred questions (or less)
> targeted to novice, intermediate and expert users. I have around 20
> thing in mind, however i was hoping to gt more.
> Thanks,
> Saeed
> p.s. of course answering one question by it self will not lead to the
> conclusion that this email is phishing. For example: email contains html
> does not mean it is automatically phishing
>
>
>
> __________ Información de NOD32, revisión 2011 (20070127) __________
>
> Este mensaje ha sido analizado con NOD32 antivirus system
> http://www.nod32.com
>
>
>
>

[ reply ]