Good news! I’m getting a salary increase!

There’s great news for me in my inbox today.

It seems my boss here at “Grahamcluley” has decided that I deserve a wage increase. This is not only terrific news for my bank balance, but also terribly exciting as I never knew I even had a boss – let alone that my company had a human resources department and accounts team.

The email has the subject line “New salary increase”, and I’m told the new bump up in wages starts this month.

I just hope no rotter is trying to pull the wool over my eyes to click on a link that might have malicious intent.

Of course, I could always hover my mouse over the link to see where it’s going to go before I…. oh… oh dear.

Oh well. I guess I would be wisest to report this attempt to scam me to my IT support team. Which, unfortunately in this company of one person, is just me.

In all seriousness, you might be rightly suspicious of emails like this and never dream of clicking on the link, but can you say the same for everyone else inside your company?

Simple social engineering tricks like this can often be the starting point of a much more serious security incident.

Found this article interesting? Follow Graham Cluley on Twitter or Mastodon to read more of the exclusive content we post.

Graham Cluley •   @gcluley

Graham Cluley is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s when he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Now an independent security analyst, he regularly makes media appearances and is an international public speaker on the topic of computer security, hackers, and online privacy. Follow him on Twitter at @gcluley, on Mastodon at @[email protected], or drop him an email.