What's phishing?

Phishing is a common Internet scam that uses official-looking email messages and websites to get you to share personal information. The people behind these kinds of activities want you to fall for their scams so they can steal your identity and commit fraud. 

Be cautious of any email or website that asks for sensitive information and watch for these red flags before sharing information electronically.

Common red flags:

  • Mistakes in grammar or spelling. Real organizations do mess up once in a while, but if the message is so full of errors your elementary school teacher wouldn't accept it, it's likely a scam.
  • A TO/FROM address that seems fishy (so to speak). FROM addresses can be easily forged, so pay attention to the TO field. Is your email address listed? If not, the message is likely a phishing attempt.
  • No personal information in the email. Most legitimate institutions have your information on file and will address you by name. A "Dear Valued Customer" salutation is suspect. However, phishers can mine public records and social networking sites for your personal details, so don't assume a message is safe just because it contains your name or other trivia.
  • Requests for personal information. Sensitive information such as passwords, bank account numbers and social security numbers should never be sent via email. CenturyLink, PayPal and your bank are examples of companies that would never ask for personal information in an email.


If you receive a phishing email in your CenturyLink email inbox, forward it to phishing@centurylink.net. Or, you can report it as spam, by simply clicking the Spam button that is located on your CenturyLink webmail toolbar.