1. Something for nothing. Many scams claim that you are a winner or have been specially selected for some kind of great offer. If someone is offering you something for nothing, or telling you that you've won a contest you never entered, be suspicious!

2. Generic greetings. Phisher emails often use a vague Subject line, trying to make you curious enough to read them. Scams might also address you by the first part of your email address. Don't be fooled!

3. A false sense of urgency. "Act today or your account will be canceled/your house foreclosed /your credit ruined!" Scam artists will say anything to get you to react without thinking first. They might describe an unauthorized transaction on your account or claim they're updating their accounts and need your information immediately or else.

4. Misspellings and poor grammar. Phisher emails often contain misspellings, incorrect grammar, missing words, or say things that just don't add up. Legitimate companies employ professional writers and editors.

5. Fake links. That "click here" may not go where you think it goes.

Before you click, hover your mouse over the link (without clicking) and examine the Web address that appears at the bottom of the window. The address might contain "earthlink.net" but if it also contains something like "345lkjsd.com," watch out!

If you DO click, immediately look for the Web address (URL) and make sure it is an EXACT match to the link you just clicked!

6. Deceptive Web addresses. A close cousin to a fake link deceptive addresses often look legitimate, but aren't! Examples of deceptive addresses include: www.earth1ink.com, www.accounts-earthlink.com, and www.earthlinkcom.net. All fake! Of particular note, financial institutions and adult entertainment sites are the most frequent targets for this kind of phishing.

7. Pop-up boxes. If a window pops up asking for personal information when all you've done is open your email, it's most likely a scam. Legitimate companies definitely won't ask for sensitive information via a pop-up box in your email.

8. Unsecured Web sites. The letters "https" should always precede the address of any Web site where you enter personal information. The "s" stands for secure. If you don't see "https," don't enter any personal information!

9. Weird attachments. Files attached to a fraudulent email can contain viruses designed to steal information from your computer. If a message appears to be from someone you know, read it carefully before opening any attachments. Use tips 2, 4 and 5 above to make sure it's not a scam before you even think about opening that attachment.

10. A fake Sender's address. If you've received email from a company before, so you know what "From" address they normally use, you can compare it to a suspect message. However, it's possible to forge the "From" address on a message, so you should use this technique in addition to others to ferret out a phisher.

11. Email that looks like a Web site. Some email messages include forms for you to enter information right in your email program. Most legitimate Web sites won't ask you to enter personal information outside of your Web browser.

EarthLink Protection Control Center