The Postal Service is advising employees to exercise caution online following the June 27 worldwide ransomware attack that affected computers in more than 60 countries.
The attack was similar to the WannaCry ransomware incident in May that disrupted computer systems and locked desktops.
Hackers often use phishing emails to trick users into downloading ransomware software that locks computers in order to extort users into paying ransoms to regain control of their systems.
The USPS Corporate Information Security Office offers these tips to identify phishing emails:
• Assess the sender. Be certain you recognize the email address before opening a message.
• Review the greeting. Consider the consistency of the greeting when deciding if a message is secure.
• Pause before reacting. Be wary of communications that require “immediate action” or request personal information via email.
• Question links and attachments. Confirm .zip or .pdf files embedded in emails are from a reliable source before opening.
• Validate by phone. If an email seems suspicious, call the sender to validate the information before clicking on any embedded links or attachments.