24/06/2025
“Your package couldn’t be delivered.”
Sound familiar? This subject line has tricked thousands of businesses into clicking a phishing email.
It looks legit and sounds routine… and that’s exactly why it works.
Gone are the days of Nigerian princes “offering” millions out of the goodness of their hearts.
Phishing emails today are purposely boring and nearly impossible to spot.
That’s why 84% of UK businesses (and 83% of charities) were hit by a phishing attack in 2024, with an average loss to mid sized companies of well over £10k!
And that’s why you should treat every unexpected email with a healthy dose of suspicion.
☑️ Check the actual sender address, not just the name. It might say “Microsoft,” but be from a random Gmail.
☑️ Hover over links before clicking. If the URL looks off, don’t touch it.
☑️ Watch for urgency. “Your account will be locked in 2 hours” is classic scam pressure.
☑️ Be wary of attachments you weren’t expecting, especially .exe files, ZIPs, PDFs, or anything asking you to enable permissions.
☑️ Check for subtle errors like weird phrasing, missing logos, or footers that don’t match the brand.
Build a habit of going through this simple checklist, and you’ll be safer than most businesses out there.
And if you need help setting policies or training your team to spot all the phishing emails that land in their inbox, send us a message.
