How to Identify a ‘Phishing’ Email

Scams come in many forms and we must be alert to all of them: suspicious phone calls and text messages, misleading marketing of risky financial products … any medium in which a fraudster can grab your attention and coax you into performing an action that will cost you in some way.

This article focuses on emails, because, despite the success of other forms of texted communication, such as WhatsApp and Messenger, email has remained the primary successor to traditional mail since the internet took off in the 1990s.

Depending on the filters of your network provider, email inboxes are increasingly being flooded with “phishing” emails that require you to click on a link or open an attachment. Many are obviously fraudulent, but the scammers are becoming increasingly sophisticated, more accurately replicating official emails that would come from your bank, for example. It takes just one slip-up – mistaking a phishing email for one from a genuine source and clicking on a link – to result in a major financial loss, data breach or identity theft.

Paul Williams, country manager for Southern Africa at cybersecurity company Fortinet, highlights the need to stay vigilant against these sophisticated scams, saying phishing emails exploit human error. “They often play on fear, urgency or curiosity to compel victims to act without thinking,” he says.

What can happen?

If you click on a link or download an attachment in a phishing email, either on your computer or phone, one of two things may happen:

1. The link directs you to a fake website where you may be asked to enter private information. This may be used to gain access to a bank account or to “clone” your identity.
2. The link or attachment downloads malware onto your phone or computer that is difficult to detect and may harvest sensitive data. One type of malware, called ransomware, is programmed to wipe out the data on your computer’s hard drive, after which the scammers will extort money from you if you want to retrieve it.

How to recognise phishing emails

Williams says you can identify phishing attempts by five critical clues:

1. Suspicious sender addresses. Phishing emails often come from email addresses that appear legitimate but feature subtle discrepancies. For example, an email might appear to come from support@bank.co.za but is actually sent from support@bannk.co.za. These minor variations are easy to overlook.
2. Generic greetings. Williams says a legitimate email from your bank or service provider will usually address you by name. Conversely, phishing emails use impersonal greetings such as “Dear Customer” to cast a wide net.
3. Urgency tactics. Phishing emails frequently create a sense of urgency to spur immediate action, Williams says. Common examples include warnings about account closures, unusual login attempts, or unpaid invoices.
4. Suspicious links and attachments. “Hover over any links to check the URL before clicking,” Williams says. “And avoid downloading unsolicited attachments. Local campaigns frequently mimic utility providers or telecommunications companies, making vigilance essential.”
5. Poor grammar and formatting. While phishing scams are becoming more sophisticated, many still exhibit red flags such as spelling mistakes, inconsistent formatting, or awkward phrasing. “Professional organisations take great care with their communications,” Williams says. “If the email looks sloppy, it’s likely a scam.”

It can happen to you

Never click on a link or download anything on your phone or computer unless you are sure of its authenticity. In a recent case reported on social media, a pensioner believed he was dealing with SAA for discounted flight tickets. After downloading the “app” to get the discount, his bank accounts were cleared out, including his overdraft, leaving him R52 000 in debt.