Phishing Awareness Guide - UNI Data Inc.

What is Phishing?
Phishing is a type of scam where attackers pretend to be a trusted source to steal information such as:
- Passwords
- Email credentials
- Banking or payment details
- Company data
These attacks are most commonly delivered through email but can also occur via text messages, phone calls, or messaging apps.
Why This Matters
A single successful phishing attack can:
- Compromise employee accounts
- Give attackers access to company systems
- Lead to data breaches or financial loss
- Spread malware across the network
Phishing attacks rely on human error—not technical weaknesses.

1. Fake Login Pages
You may receive a message asking you to log in to:
- Email accounts
- Microsoft 365 or other services
- Banking or payment systems
The link leads to a fake website that looks real. Any information entered is sent directly to the attacker.
2. Invoice or Payment Scams
Emails may claim:
- An invoice is attached
- A payment is overdue
- Banking details have changed
These often include malicious attachments or attempt to redirect payments.
3. Urgent Account Alerts
Messages may say:
- “Your account will be locked”
- “Suspicious login detected”
- “Immediate action required”
These create panic to push you into acting quickly.

4. Impersonation (Spoofing)
Attackers may pretend to be:
- Your manager or coworker
- A vendor or supplier
- Your IT provider
They may request sensitive information or ask you to perform actions like resetting passwords.
Warning Signs of a Phishing Attempt
Be cautious if you notice:
- Unexpected emails or messages
- Requests for passwords or sensitive information
- Urgent or threatening language
- Spelling or grammar mistakes
- Unusual sender addresses
- Links that don’t match the expected website
- Attachments you weren’t expecting

Do Not Click Suspicious Links
- Hover over links to preview the destination
- If unsure, do not click
- Go directly to the official website instead
Verify the Sender
- Check the full email address carefully
- Be cautious of slight misspellings or unusual domains
- When in doubt, contact the person or company directly
Avoid Opening Unexpected Attachments
- Especially files like .zip, .exe, or unknown documents
- Even trusted senders can be compromised

Never Enter Credentials on Untrusted Pages
- Only log in through known, official websites
- Do not follow login links from emails unless you are certain they are legitimate
Be Cautious with Urgency
- Take a moment to think before acting
- Legitimate requests rarely require immediate action without verification

What To Do If You Suspect Phishing
If you receive a suspicious message:
- Do not click links or download attachments
- Do not reply
- Report it to your IT provider or manager
- Delete the message
What To Do If You Clicked Something
If you think you may have interacted with a phishing attempt:
- Stop what you are doing immediately
- Disconnect from the network if instructed
- Contact your IT provider right away
Quick action can prevent further damage.
Quick Checklist
Before interacting with any message, ask yourself:
- Was I expecting this?
- Do I recognize the sender?
- Is there urgency or pressure?
- Does anything look unusual?
- Does the link or attachment seem safe?
If anything feels off, do not proceed.

→
Contact Us

Contact Form

Name Phone Email Message
Facebook
Twitter
Email