What is Phishing?
Phishing is when attackers send malicious emails designed to trick people into falling for a scam. The intent is often to get users to reveal financial information, system credentials or other sensitive data.
What does a Phishing email look like?
Attackers prey on fear and a sense of urgency. It’s common for attackers to tell users that their account is restricted or will be suspended if the targeted user does not respond to the email. Fear gets targeted users to ignore common warning signs and forget their phishing education.
Usually, a phishing email is sent to as many people as possible, so the greeting is generic.
Attackers register domains that look similar to the official one, or they will occasionally use generic providers such as Gmail. Spoofed senders are possible with email protocols, but most recipient servers use email security that detects spoofed email headers. When users receive emails, the messages might use the official company logo, but the sender address would not include the official company domain. Sender address is just one warning sign, but it should not be the only thing to determine the legitimacy of the message. Trust your gut if it doesn't feel right.
Click here to see some real world examples.
What should I do if I think I receive a phishing email?
You should report the message using our Report Phish button in Outlook and delete the message.
If using Outlook Online:
If using the desktop client:
If you have any further questions or concerns please reach out to help desk by creating a request on the Student Support Center or by email at firstname.lastname@example.org.
Thank you for staying safe.