According to James Magdalenski, director, Naval OPSEC Support Team, as members of the military, we are likely to receive phishing emails just because of our affiliation with the DoD. Phishing emails can originate from hackers, foreign agencies or services, thieves who want personally identifiable information (PII), or just someone with an acute curiosity of what we do in the military. Although DoD networks are well protected, they are not 100 percent fool proof from phishing emails.
He said "Always be aware of suspicious emails from people you have no affiliation with, and especially those emails requesting sensitive information like usernames, passwords, personal and information, military operations details, financial information and so on."
Magdalenski added, phishing emails can also include malicious links or attachments with catchy titles, like "Answers to CPO Advancement Exam". Phishing isn't just limited to emails either; it could be a simple phone call from someone claiming to be from a legitimate organization, like your financial institution. Legitimate organizations will never call you and request your PII.
He stated that similar to a Sailor's working environment, phishing emails will often be sent to your home or personal email address.
"For example, if you receive a "pop up" from your anti-virus software provider telling you it's time to renew, just by clicking on the pop up, it may be a phishing scam," said Magdalenski.
He said to go to your anti-virus software provider's home page for your renewals and updates. The same holds true for advertisements. Although most are legitimate ads, it only takes one non-legitimate to completely infect your computer, tablet or even smart phone.
He said Sailors who receive suspicious emails should immediately contact their organizations Information Assurance Manager (IAM) or Information Security Manager (ISM). Do not open and if you're already opened the email, do not click on any files or links. Be especially suspicious of email sent directly to your "Junk" email folder. Most of those emails go to the junk folder for a reason.
In addition, Magdalenksi stated annual Information Assurance on-line training is available on Navy Knowledge Online (NKO)
and Total Workforce Management Services (TWMS)