...
- Hover your mouse over the link. In this picture, the “Recover Delayed Messages” is the link. Usually, the link is the one where the email is instructing you to click.
- When your mouse is hovering over the link, you can see Outlook URL-address. It will appear on the bottom of your screen or similarly as in the picture. In some programs, you can display the URL-address by right-clicking the link.
- See the URL-address, which is highlighted by the red box in the picture above. It does not direct you to a trusted website like metropolia.fi or some other familiar website. So the URL-address directs you to an unknown page where it’s likely to ask for your username and password. This way the scammers get your login information.
- If you have clicked one of these unknown links, it usually takes you to a familiar login page. In the example picture below, you can see that the webpage looks pretty much the same as in Metropolias Outlook login page. Nevertheless, where you can detect scam is by looking at the webpages address bar.
2. Inspect the message as a whole
...
Often, the messages even come from an address that does not belong to the alleged sender. You will see the address above the message as shown in the image (the address is circled highlighted in red):
In the example above, the sender is named "Metropolia University of Applied Sciences". When you take a closer look at the sender's address, you will notice that it does not end at @metropolia.fi. This is therefore not Metropolia's e-mail address.
...