What are the characteristics of a corporate phishing e-mail?  List three of them.

What will be an ideal response?

The e-mail is unsolicited and unexpected.

The logo and other graphics are copies of corporate images and seem to be
legitimate.

The message uses a generic greeting, such as "Dear valued customer" or "Corporate
bank user," instead of the recipient's real name.

The message conveys a sense of urgency, such as "Please respond immediately,"
"Your account has been locked," "Your credit card has expired," or "There is a
security problem." The intent is to make readers hurry and perhaps overlook
illegitimate aspects of the e-mail.

Personal account information is requested, usually by asking that the information be
confirmed.

The e-mail contains a link that seems to be a secure HTTPS link. When you navigate
to a Web page with this link, a lock symbol depicting an SSL-encrypted site appears at
the lower right. If you hover the mouse pointer over the link, however, the real Web
page address appears at the lower left. Other links in the e-mail, such as "Security
Policy" or "For further information," point to the same illegitimate link.

Usually the link to which you are redirected is no longer active after several hours.
Phishing attackers play a game of hit-and-run to elude authorities, so they do not
remain stationary for long.