Got Phished? It's okay, let's fix that.

Phishing is a type of online scam where attackers trick you into giving sensitive information (passwords, payment details) or executing actions (downloading malware, clicking malicious links) by pretending to be someone trustworthy.

Don't panic!

In this case, this was simply a simulated test, contracted by your employer, meant to check the company's security level.

If you are seeing this page, please contact your employer in order to receive mandatory phishing training (Won't take long, we promise) - or directly contact us - [email protected].

How it worked here: The attacker sent an email that looked like it came from the business, but the sender address didn’t match the official Facebook and Instagram contacts and used an unusual domain (e.g. proton.me). That mismatch is a strong sign the message was fake.

Why that matters: Scammers often spoof or use similar-looking addresses and uncommon domains to mimic legitimate services. Checking the exact sender address is one of the quickest ways to spot a fake.

PDF's and links: Don’t open PDF attachments unless you’re certain who sent them - PDF's can contain embedded links or malicious content. Never click links inside an unexpected PDF - instead verify the sender by a separate channel (Official website, known phone number, or the business’s verified social media).