If an email looks weird…it probably is weird.
If you aren’t expecting something weird from the person who sent the message, contact them with a new email or a phone call and confirm if they meant to send it.
This does 2 things:
If you think there is a problem with one of your accounts because an email told you, don’t click on the links in the email, just open your browser and go directly to that site as you normally would, by typing in the website address yourself.
If the Main Part of the Website Address in the address bar looks weird…it probably isn’t where you meant to be. There is a difference between netflix.com and netflix.rosebaker01.com. Just because netflix is in the address, doesn’t mean it is netflix. Only when the domain and the domain extension are next to each other is it the actual website (see image below).
It is easy to check websites with this simple rule: If the “Main Part of the Website Address” in the address bar isn’t something you are used to seeing or wouldn’t type yourself, it is probably a phishing site. Especially if it looks like a different site.
Additional ways to avoid phishing
If you need to update something because an email told you to, go to your web browser and type in the address as you normally would to get to that site (i.e. your online banking site). Once you are logged in to the site you know and trust, if there isn’t something obvious to update, then you are probably safe. If you are still concerned YOU contact their customer service department.
If someone calls…don’t give them information. Hang up with the person who called and call the number you know for the company that “just called you”. If there really is an issue, they’ll have it in their computer system.