How can I protect myself from phishing and smishing?

Take the following precautions to protect yourself from phishing and smishing:

1. Verify before you click. Hover over email links or type the website manually.
2. Enable MFA (multi-factor authentication). Use app-based authentication (e.g. Authy, Google Authenticator) instead of SMS where possible.
3. Keep software updated. Apply security patches on phones and computers.
4. Use spam filters. Enable phishing detection in email services.
5. Don’t reply to suspicious messages. Replying confirms your email/phone number is active.