We all get a lot of email almost daily. You really must be on your toes when checking it. Something from an unknown sender with a link. DELETE. Something from your boss but his email is not correct. DELETE.
In this day and age, you must be suspicious of everything that comes in. One of the tricks hackers are using to get you Office365 credentials is to send you an email that looks like it is coming from Microsoft about your account. See pic above. Most people don’t think twice about it and click on the link that looks like it goes to your sign in page for Office365, but all it is doing is harvesting your credentials. Nothing happens when you provide them, and you just forget about the interaction. Well now the hacker has your login and begins his dirty work. What can you do to not be a victim? Trust but verify email. If you are not expecting an email that looks important, pick up the phone and call to verify they sent it. 9 times out of 10 they did not. Never click links in emails. You can mouse over a link to see the URL it is going to. It’s easy to create a hyperlink to a site that will infect you. Don’t just read the senders name in the address field, read the email address. Does it look unusual? If so, it is probably malicious.