Cómo detectar un correo electrónico de phishing en 10 segundos
24 junio 2026 · 3 min de lectura · Comentarios
El phishing es la forma más común en que las cuentas se ven comprometidas. Los correos electrónicos fraudulentos modernos parecen convincentemente reales. Aquí están algunos signos reveladores que los delatan cada vez.
Un ejemplo de correo electrónico de phishing
Ese correo electrónico tiene al menos cinco señales de alerta visibles incluso antes de leer el cuerpo. He aquí cómo detectarlos:
1. Verifique la dirección de correo electrónico del remitente
- The display name can say anything — "PayPal Security", "Apple Support", "Your Bank". Click on it to reveal the actual address.
- Look carefully at the domain.
paypa1-support.comis not PayPal. Scammers use typos, hyphens, and look-alike characters (1 instead of l). - Legitimate companies always email from their own domain:
@paypal.com,@apple.com, etc.
2. Detectar la urgencia artificial
- Phishing emails create panic. "24 hours", "immediately", "permanently closed", "action required" — these phrases are designed to make you click before you think.
- Real companies don't threaten to delete your account in 24 hours over an email. If something were genuinely wrong, you'd see a notice when you log in.
3. Pase el cursor sobre los enlaces antes de hacer clic
- On a computer, hover your mouse over any link without clicking. The real destination appears in the bottom-left corner of your browser.
- A button that says "Verify My Account" might actually lead to
paypal-verify-login.ru. The button text is decoration — the URL is what matters. - On mobile, press and hold a link to preview the URL before it opens.
4. Saludo genérico
- "Dear Valued Customer" or "Dear User" means the sender doesn't actually know your name — because they sent this to thousands of random email addresses.
- Your bank, PayPal, and Amazon all know your name. They will use it.
5. Apego inesperado
- An invoice you didn't request. A "shipping label". A "document for your review". If you didn't expect an attachment, don't open it.
- Malicious attachments are commonly disguised as PDFs, Word documents, or ZIP files. Opening them can install malware silently.
Qué hacer si no estás seguro
- Don't click any links in the email. Instead, open a new browser tab and type the company's address directly (e.g.
paypal.com). - Log in there. If something is actually wrong with your account, you'll see a notice after logging in.
- Report the phishing email using your email client's built-in "Report phishing" option. This helps train filters to catch similar emails for everyone.
