...
Always hover first over the links in the email. Do not click. Does the destination URL match the destination site you would expect? Will it download a file? Are they using a link shortening service? When in doubt, if you have a shortcut to the site of the company sending you the email, use that method instead of clicking the link in the email.
4. Sender is asking for money.
Often attackers will ask for money in the form of a wire transfer or in the form of a gift cards. Attackers attempt to get money this way because these modes of money transfer are non-refundable and hard to trace. In the email above the attacker asks the sender to purchase Google Play gift cards.
I need google play gift cards
5. The sender address isn’t correct.
Check if this address matches the name of the sender and whether the domain of the company is correct. To see this, you have to make sure your email client displays the sender’s email address and not just their display name. Sometimes you need to train hawk eyes at the address, since spammers have some convincing tricks up their sleeve. In the example above the senders email is networkadmin@my.com which is not a valid sage.edu email address. We always advocate checking the email address being used to send the email rather than just looking at the senders name.
...