Phishing emails are seemingly legitimate emails with links to website that mimics a legitimate site, such as the netsuite.com login page. Phishing emails try to trick you into revealing information, often by asking you to “verify” or “update” information, while destination websites can contain malware. These fake emails often use the logos of the companies they are impersonating to look legitimate.
Safeguarding against Phishing
To ensure that a link is legitimate before you click, hover your mouse over it to display the destination URL. Confirm that the destination displayed matches the destination in the email and is going to the organisation’s legitimate website. A fraudulent message may point you to a domain name that is spelled very closely to a genuine domain name, or appears to be related it.
Phishing emails try to trick you into revealing information, often by asking you to “verify” or “update” information, while destination websites can contain malware. These fake emails often use the logos of the companies they are impersonating to look legitimate.
Some common phishing tactics include:
- “Dear NetSuite user...” Such messages are sent out in bulk, and do not include any unique identifying information and don’t address you by name. Be mindful of such emails.
- “We suspect unauthorised activity on your account.” These emails request you to respond by claiming that your account security has been compromised.
- “Verify your account...” Legitimate businesses will not ask you to send passwords, login names, Social Security numbers, or other personal information via email.
- “If you don’t respond within 24 hours, your account will be closed...” or “Get your refund now...” Fraudsters attempt create a sense of urgency, to make you respond quickly without thinking.
Protect Your Login Credentials
Be suspicious of any email that includes a link to the netsuite.com login page. Don’t click on such links—instead, always log in to netsuite.com by:
- Entering or bookmarking https://system.netsuite.com/pages/customerlogin.jsp(opens in new tab) in the address field
- Looking for the lock icon to show the page is encrypted
- Clicking the Customer Login tab from the netsuite.com home page
- Don’t enter personal or financial information into pop-up windows.
Be Alert for Suspicious Attachments
Phishing emails may include links or attachments that install malicious code that captures keystrokes from your computer. Cyber criminals often send attachments with familiar extensions such as .doc and .pdf, luring users to click on to the attachments. Always use extreme caution when dealing with attachments from unknown source.
Report Security Concern
Forward any suspicious email that uses NetSuite’s name to: security@netsuite.com
