007 - Pause Before Clicking Links

Written By Russell Mickler
Many scams rely on panic and urgency. If a text or email says “Act now!” or “Your account will be closed,” slow down. Visit the company’s website directly instead of clicking the link provided.

We’ve all received that text message or email that makes our heart skip a beat. “ALERT: Your bank account has been locked due to suspicious activity. Click here to verify your identity immediately.” Or maybe it’s a notice claiming a package you don't remember ordering can’t be delivered until you update your address.

In that moment of sudden panic, your instinct is to fix the problem right away. The scammers know this. In fact, they are counting on it.

The Psychology of the Digital Trap

Scammers are masters of creating artificial urgency. They use words like "Immediate," "Urgent," or "Account Closed" to bypass your logic and trigger your flight-or-fight response. When you are panicked, you click first and ask questions later.

Once you click that link, you are usually taken to a fake website designed to look exactly like your bank, Netflix, or the postal service. The moment you type in your username and password, you’ve handed them the keys to your digital life.

Your 3-Second Survival Guide

You don’t need to be a cybersecurity expert to defeat these traps. You just need to master the art of the intentional pause.

The next time an urgent message arrives, follow this simple routine:

  • Stop and Breathe: Treat extreme urgency as a red flag. Real companies will rarely give you a 20-minute deadline to save your account.

  • Inspect the Sender: Look closely at the email address or phone number. If it claims to be from your bank but comes from a random string of numbers or a public domain like Gmail, delete it.

  • Go Around the Link: Never click the link inside the message. Instead, open your web browser, manually type in the company's official web address (like chase.com or amazon.com), and log in securely from there.

If there is a real emergency, you will see a notification waiting for you on your actual account dashboard. If not? You just successfully outsmarted a scammer. Slow down, bypass the link, and stay in control.

What Now

If you have already clicked on a suspicious link and believe your security has been compromised, taking rapid action is essential. Based on security frameworks provided by prominent digital consumer protection groups like the National Cyber Security Alliance and the Cybercrime Support Network, follow this immediate mitigation plan:

  1. Disconnect from the Internet: Immediately turn off your device's Wi-Fi and disconnect any network cables. If the link installed malware or a virus on your device, cutting the internet connection prevents the malicious software from sending your personal data back to the hacker or spreading to other devices on your home network.

  2. Change Your Credentials Securely: From a completely different, secure device (like a separate phone or computer), log into the account targeted by the link and change your password immediately. If you reuse that same password across any other websites—such as your email, banking portals, or social media—change those passwords as well.

  3. Scan for Malicious Software: Once your device is completely isolated from the internet, run a full system scan using trusted, up-to-date antivirus or anti-malware software to detect and quarantine any malicious files or trackers that may have downloaded in the background when you clicked the link.

  4. Monitor Your Financial Accounts: Keep a close eye on your bank accounts and credit cards for any unauthorized transactions or unusual activity over the next few weeks. Consider placing a free credit freeze or fraud alert on your credit reports with the major bureaus to block scammers from opening new accounts in your name.

  5. Report the Phishing Incident: File an official scam report to help consumer protection agencies track down the fraudsters. You can report the deceptive message to the Federal Trade Commission (FTC) at ReportFraud.ftc.gov or forward phishing emails directly to the Anti-Phishing Working Group (APWG) at reportphishing@apwg.org.

Local Resources

  1. Lutheran Community Services Northwest (Crime Victim Service Center) https://lcsnw.org/program/crime-victim-service-center/ (360) 694-5624

  2. Clark County Volunteer Lawyers Program https://ccvlp.org/get-help/ (360) 695-5313

  3. Northwest Justice Project (Vancouver Office) https://nwjustice.org/clear-hotline (360) 693-6130

Russell Mickler

Russell Mickler is a computer consultant in Vancouver, WA, who helps small businesses use technology better.

https://www.micklerandassociates.com/about
Previous

008 - A Password Manager Makes Life Easier
Next

006 - Back Up Important Photos and Documents