Don't trust anyone
You know not to click on links in suspicious-looking emails from what sort of looks like your bank, but phishing scammers are getting more sophisticated and are using more outlets to try to catch your personal information.
"With the rise of social media, phishing attacks continue to grow and become more sophisticated," says Mark Stevens, vice president of global services and support at Digital Guardian, a Waltham, Massachusetts, cybersecurity firm. "Now attackers can use the messaging feature in social media as another medium in addition to email."
Hackers also have shifted to "spear phishing," which is when you get a message addressed to you personally claiming to be from a person you know or a company you've done business with seeking your personal information. If it appears the person or company knows you, you may be apt to let your guard down.
If you're suspicious of a message, even if it looks real, don't click on the link. Instead, call customer service and ask whether they sent something to you. If they did, then you can resolve the issue over the phone. If not? Trash the email and report it as spam.