You Clicked the Link. Now What? A Calm, Confident Guide to "What to Do Next."

Written By Marco Lam

That single, accidental click.

It’s a feeling every professional knows: the sudden drop in your stomach, the flash of heat, and the immediate, agonizing thought, "Oh no, what did I just do?"

My name is Marco Lam, and as a CISSP (Certified Information Systems Security Professional), I’ve seen this exact moment happen to the sharpest, most careful people I know. So, first: take a deep breath.

Panic and fear are what the attacker is counting on. They want you to freeze or, even worse, hide the mistake.

This is not a guide to scold you. This is a calm, confident plan for what to do right now. You haven't failed; you've just discovered a very convincing trap. Let's walk through the next steps together, not with fear, but with a clear head.

Your 3-Step Cyber "First Aid" Plan

When you're in a moment of panic, you don't need a 20-point checklist. You need a simple, powerful plan. Here are the three immediate steps to take after clicking a suspicious link.

1. ISOLATE: Disconnect From the Network

Your first job is to prevent the fire from spreading. If the link you clicked has initiated something malicious (like malware), it will try to spread to other devices on your home or office network.

  • On Wi-Fi: Confidently move your mouse to the Wi-Fi icon in the corner of your screen and turn it off.

  • On a Wired Connection: Just as calmly, reach to the back of your laptop or computer and unplug the blue or grey network cable.

That's it. You've just contained the threat. This single action prevents a personal problem from becoming a company-wide crisis.

2. REPORT: Alert Your IT Department Immediately

The single biggest mistake you can make right now isn't the click—it's the cover-up. Shame and fear are a hacker's best friends.

Your IT department is not there to judge you; they are there to hunt the threat. By reporting the incident immediately, you are not "getting in trouble." You are becoming the hero of the story.

  • Call your IT help desk or your manager.

  • Use simple language: "Hi, I just clicked on a suspicious link in an email, and I've disconnected my computer from the network. Can you help me?"

By reporting it fast, you are giving your security team the critical head-start they need to protect everyone else. They can now block the link, warn others, and check the network for threats. That's a confident, responsible, and professional act.

3. DOCUMENT: Become the Investigator

While you're waiting for IT to respond, grab a notepad or your phone. Write down what you remember. You are now the primary witness.

  • What did the email say? Was it pretending to be your boss, a bank, or a delivery service?

  • What was the urgency? Was it a "Problem with your invoice" or an "Urgent request"?

  • What did you see after you clicked? Did a file download? Did a strange website pop up?

Don't delete the original email yet unless your IT team tells you to. It's now evidence. Giving your team this information turns you from a "victim" into an active and valuable part of the solution.

This Wasn't a "Stupid Mistake." It Was a Sophisticated Trap.

Let's be clear: you didn't click a link from a "Nigerian Prince." Modern attacks are psychologically brilliant. They are designed by professionals to mimic the exact workflow of a 40-60 year old. They look like your boss, your bank, or your Microsoft login page.

They prey on social engineering—using urgency, authority, and curiosity to bypass your rational brain.

Feeling "silly" for falling for it is exactly what they want. But at Andraluma, we know that cybersecurity isn't a tech problem; it's a critical thinking problem.

The Andraluma Lesson:

The goal isn't to become someone who never makes a mistake. The goal is to become someone who has the confidence to handle it when they do.

Traditional cyber training gives you a list of rules to memorize (the "banking model"). This is why it fails. As soon as a new, more clever attack appears, the rulebook is useless.

Real, lasting cyber confidence comes from the Enlightenment Dialogue Method—learning to have a Socratic, critical conversation with yourself before you act. It’s about learning to pause and ask:

  • "Why is this person contacting me?"

  • "Why now? What is the real intent behind this urgency?"

  • "What's the worst that can happen if I don't click this and, instead, verify it through another channel?"

This is how you move from a place of fear to a place of lasting confidence.

You handled this click. You had a plan. Now, let's have the conversation that ensures you're ready for the next one.

Ready to stop feeling overwhelmed by cyber threats and start building real, lasting confidence? Learn more about the Andraluma approach to security awareness.

Further Reading

Here are some excellent, authoritative resources to deepen your understanding and to share with clients who want to learn more.

  • Australian Cyber Security Centre (ACSC)

    • Website: cyber.gov.au

  • Cybersecurity & Infrastructure Security Agency (CISA)

    • Website: cisa.gov (A US Government agency)

  • The Art of Deception: Controlling the Human Element of Security by Kevin Mitnick

  • Schneier on Security

    • Website: schneier.com

  • (ISC)² Blog

    • Website: isc2.org/blog

Marco Lam
Previous

Your Most Experienced Staff Are Your Best Cyber Defense. (You Just Need to Update Their Playbook.)
Next

The Quiet Costs: How Your Team's Tech Anxiety is Silently Draining Your Budget