Email remains one of the most common ways cyber criminals target businesses. A single click on a malicious link or file can lead to data breaches, ransomware attacks or complete system downtime. While security software plays a vital role, staff awareness and simple checks are just as important. At Edmondson’s, we regularly help businesses reduce risk by showing teams how to spot and verify suspicious emails before any damage is done.
Why Email Threats are so Effective
Phishing emails are designed to look convincing. They often appear to come from trusted suppliers, delivery companies or even colleagues. Attackers rely on urgency, encouraging recipients to click quickly without checking details. Once a link is clicked or an attachment opened, malware can be installed or login details stolen within seconds.
Because of this, knowing how to safely check links and files is a vital skill for any business.
Start by Checking the Email Itself
Before clicking anything, take a moment to review the email carefully. Look at the sender’s email address rather than just the display name, as attackers often use addresses that closely resemble legitimate ones. Watch for spelling mistakes, unusual wording or unexpected requests for payment or sensitive information.
If something feels off, trust your instincts and pause.
Hover Over Links Before Clicking
One of the simplest checks is to hover your mouse over a link without clicking it. This shows the actual web address the link will take you to. If the link doesn’t match the sender or points to a strange or shortened URL, it’s best not to click it.
Shortened links can be especially risky as they hide the real destination, making it harder to judge whether they’re safe.
Check Links and Files
A very effective free tool for checking suspicious links and attachments is VirusTotal. This site scans files and URLs using multiple antivirus engines and security tools, helping identify potential threats before you interact with them.
To check a link, copy and paste the URL into VirusTotal’s and submit it for analysis. For attachments, you can upload the file directly without opening it. VirusTotal will then report whether any known security engines flag the link or file as malicious.
While no tool is perfect, this adds an extra layer of confidence and is far safer than clicking blindly. If you're still in doubt, contact the sender through a different method, such as a phone call, to confirm they sent the file.
Keep Your Software and Security Tools Up To Date
Up to date antivirus, email filtering and operating systems all reduce the risk of successful attacks. Many threats rely on outdated software vulnerabilities, so regular updates are essential.
We recommend layered security, combining endpoint protection, email filtering and staff training for the best defence.
How Edmondson’s Can Help
We support businesses of all sizes with secure email protection, anti-spam solutions and staff guidance. We help reduce the risk of phishing attacks and provide advice on best practices for staying safe online.
If you’d like help securing your email systems or training your team to spot threats, get in touch with Edmondson’s today. A few simple steps can make a big difference in protecting your business.
