Published on: 8 February 2023

We recently did a test to check if staff would click on a scam email.  We did this to test how much staff are aware of cyber security.

We sent an email to all staff in December which looked like it was from NHS Discounts.  The email said it could offer a discount off energy deals.  It linked to a fake ‘NHS Discounts’ website and then asked for login details.

Over 1500 staff clicked on the link in this test email.  Over 600 staff then tried to login to give their NHS email address and password.

We want to remind all staff to be vigilant.  We all need to know how to spot email scams.  We are all responsible for this to make sure we can protect our data and systems. 

Please stay alert when you are using a Trust computer, iPad or phone. Below are some tips on how to identify a scam email, text message or phone call.

 

If you need help and support with the cost of living please click here for our information page.

 

How to spot scam messages or calls

Scammers try to quickly gain your trust. They aim to pressure you into acting without thinking.

If a message or call makes you suspicious, stop and consider the language it uses. Scams often feature one or more of these tell-tale signs.

Authority

Does the message look like it is from an official source? For example, does it look like it’s from your bank, the NHS, or a government department? Scam emails will look like they are official. They will use the same logos or branding as official sources. The criminals try to trick you into doing what they want. 

Urgency

Does the message say you have a limited time to respond?  For example, does it ask you to do something straight away or within 24 hours? Scammers will use threats to trick you.  They may say you will get a fine or something else bad might happen.

Emotion

Does the message make you panic or feel scared? Does it make you curious to click on something? It may make you feel hopeful by offering you a good deal. Scammers will use threatening language and make false claims of support.  They will tease you into wanting to find out more.

Scarcity

Does the message seem to offer something that is in short supply? This could be concert tickets or money.  It could even be a cure for a medical condition? Fear of missing out on a good deal can make you respond quickly.

Current events

Are you expecting to see a message like this? Scammers will use current news stories, big events or certain times of year to try and trick you. For example, if you are doing a tax return.  They will try to make their scam seem more relevant to you.

How to check if a message is genuine

If you are not sure about a message, you should contact whoever it is pretending to be from. Don’t use the numbers or email address in the message.  Use the contact details on their website.

Remember, your bank (or any other official source) would never ask you to share personal information via email.

What to do if you spot a scam message

If you spot a suspicious email or message:

  • Do not respond. It is safest to delete them.
  • Do not click on any links or attachments.
  • Do not reply, respond or forward the email.
  • Do not open any attachments.
  • Do not use the same password for systems at home and at work.
  • If in doubt please contact the IT Helpdesk for advice.

 
Return to News Feed