Cybercriminals are getting more sophisticated every day — and email remains their most common weapon. At Croft Financial Group (CFG), protecting your data is a shared responsibility. Here’s how you can stay safe from phishing and email threats while working with us.

We Will NEVER…

• Ask you to purchase or send gift cards
  
• Request that you reset your Outlook password from a suspicious email
  
• Ask you to send sensitive personal information via email
  
• If something doesn’t feel right — ask before you click

Use the SLAM Method to Spot Suspicious Emails

Phishing emails are designed to trick you — often by pretending to come from a familiar name or referencing personal details like coworkers, hobbies, or recent activities. That’s why awareness is your best defense.

Sender: Check the sender’s email address carefully. Is it who it claims to be?

Links: Hover your mouse over any links (without clicking) to see where they actually lead.

Attachments: Don’t open attachments from unknown senders — or even from known contacts if you weren’t expecting them.

Message: Is the tone urgent? Are there spelling errors or unusual requests? If it feels off, trust your instincts.

General Email Safety Tips

• Don’t click on suspicious links or download unexpected attachments.
  
• Never send passwords, banking info, or personal IDs via email.
  
• Be skeptical of emails creating urgency or panic.
  
• Report suspicious emails immediately to admin@croftgroup.ca.

By staying alert and following these best practices, you’re helping protect not just your own information — but the entire CFG community.

If you’re ever unsure about an email, ask your advisor or admin@croftgroup.com before taking any action. When in doubt, don’t click!