Phishing Safety Checklist for Seasoned Adults

For my non-medium friends: Friend Link

Before You Click or Reply (For your safety)

Check the Sender’s Email Address

• Look at the FULL email address, not just the display name
• Be suspicious of addresses with random numbers or misspellings (like “amaz0n.com” instead of “amazon.com”)
• Remember: Scammers can fake display names to look like companies you trust

Look for Urgent or Threatening Language

• Be wary of messages that say “Act Now!” or “Your account will be closed!”
• Legitimate companies rarely threaten you or demand immediate action
• Take a breath and don’t let fear rush your decisions

Check for Poor Grammar and Spelling

• Professional companies proofread their emails carefully
• Multiple spelling errors or awkward sentences are red flags
• Be especially cautious with emails that seem “off”

Money and Personal Information Warnings

Never Share These via Email

• Social Security number
• Bank account or credit card numbers
• Passwords or PINs
• Mother’s maiden name or security question answers
• Medicare or insurance ID numbers

Be Suspicious of Money Requests

• No legitimate company asks for payment via gift cards
• The IRS never contacts you by email first
• Your bank won’t ask you to “verify” your account via email
• Family members claiming to be in trouble should be called directly (use a number you already have)

Before Clicking Any Link

Hover Before You Click

• Move your mouse over the link WITHOUT clicking
• Look at the bottom left corner of your screen to see the real web address
• If it looks strange or doesn’t match the company name, DON’T CLICK

Check the Website Address (URL)

• Real websites use “https://” (the “s” means secure)
• Look for misspellings in the web address (paypa1.com instead of paypal.com) — thats a 1 and not L.
• Be cautious of shortened links (bit.ly, tinyurl) from unknown senders

Don’t Download Unexpected Attachments

• Never open attachments from people you don’t know
• Be suspicious of attachments you weren’t expecting, even from known contacts
• Common dangerous file types end in: .exe, .zip, .scr

Common Phishing Email Scenarios

Watch Out For:

• “Your package couldn’t be delivered” (when you didn’t order anything)
• “Verify your account” messages
• Winning a lottery or prize you didn’t enter
• Job offers that seem too good to be true
• Messages claiming to be from the government demanding payment
• “A friend sent you a photo” from unknown sources
• Tech support messages saying your computer has a virus

Safe Browsing Habits

When Shopping or Banking Online

• Type website addresses directly into your browser (don’t click email links)
• Look for the padlock icon next to the web address
• Use strong, unique passwords for important accounts
• Check your bank and credit card statements regularly

On Social Media

• Don’t accept friend requests from people you don’t know
• Be careful about what personal information you share publicly
• Watch out for “too good to be true” offers and giveaways
• Verify unusual messages from friends by calling them

What TO DO

If Something Feels Wrong:

1. STOP — Don’t click, reply, or provide information
2. VERIFY — Contact the company directly using a phone number from their official website or your bill
3. DELETE — Remove suspicious emails
4. REPORT — Forward phishing emails to spam@uce.gov and to the company being impersonated

If You Think You’ve Been Scammed:

• Contact your bank or credit card company immediately
• Change your passwords
• Report to the Federal Trade Commission at ReportFraud.ftc.gov
• Consider placing a fraud alert on your credit reports
• Tell a trusted family member or friend

Golden Rules to Remember

1. When in doubt, DON’T — It’s always safer to verify first
2. If it seems too good to be true, it probably is
3. No legitimate organization demands immediate action via email
4. You can always hang up or delete and call back using a verified number
5. It’s okay to say “no” or “let me think about it”
6. Ask a family member or friend if you’re unsure

📞 Keep These Resources Handy

• Report fraud: ReportFraud.ftc.gov or call 1–877-FTC-HELP
• Social Security scams: 1–800–772–1213
• Medicare scams: 1–800-MEDICARE
• IRS scams: 1–800–829–1040

Remember: Taking a moment to verify is always better than rushing into a scam. Stay safe!

If you feel your tech skills are still not where they need to be:

There is a guide available for anyone who:

• Feels left behind by technology
• Wants to stop asking for help with “simple” tasks (like understanding whats real and whats fake)
• Needs to learn computers for work, family, or connection
• Is tired of being treated like they’re are not smart.

If you’ve ever said “I wish someone would just explain this in plain English” — this is it.

👉 Grab your copy here — $7.99 (Download instantly, start learning in 2 minutes)

I’m Liz Ndungu. I help adults build confidence with technology through simple lessons, friendly and patient coaching.

This isn’t about turning you into a tech expert. It’s about giving you independence, dignity, and connection.

Visit: ndunguconsulting.com if you would like to learn more.

Visit: ndunguconsulting.as.me to book a session if you would like to learn more phishing clues.