Firewalls, encryption, and intrusion detection systems are all ways that USPS® protects the network and information vital to delivering 43 percent of the world’s mail. However, despite all the cutting-edge defensive technology, it still isn’t the best way to protect the organization from a phishing attack.
USPS employees and contractors are the best defense against a phishing attack. Since the average office employee receives a daily volume of almost 100 emails, knowing how to identify a phishing email is important.
Use these tips to help protect the USPS network:
n Slow down. Pause and evaluate messages before acting. Be wary of “urgent” requests.
n Verify sender. If the email is from an “[EXTERNAL]” address, proceed with caution.
n Hover, don’t click. Ensure all hyperlinked descriptions match their destination by hovering your mouse over the link.
n Beware of attachments. Don’t open or click on anything attached to a suspicious email.
n Spell check. Spelling and grammar mistakes can indicate a phishing attempt.
If you think you’ve received a suspicious email, report it. Select the suspicious email in your inbox — multiple messages can be selected, if needed — and click the “Report to CyberSafe” button in the Outlook toolbar. If the email is already open, the button will appear in the email toolbar as well.
If you do not see the “Report to CyberSafe” button on your Outlook toolbar, install the add-on at usps.servicenowservices.com/kb_view.do?sysparm_article=KB0046151.
— Corporate Information Security Office,
Chief Information Security Officer, 10-5-23