Phishing
From Wikipedia:
In the field of computer security, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication, such as e-mail.
Never send any sensitive information (passwords, Social Security Numbers, date of birth, credit card info) in an e-mail, even if you know who you are sending it to. The Technology Helpline, GTS or WebMail will never ask you for your password, ever. If you believe you may have already sent sensitive information, or fallen victim to a phishing attempt, please change your password and contact the Technology Helpline immediately at 507-933-6111 or helpline@gustavus.edu.
Contents
More Info
Video explanation - Phishing in Plain English
What To Do?
If you receive a suspicious email message (phishing attempt) -
- Don't Click
- Don't Reply
- Just Delete
You can also forward any suspected phishing attempts to the Technology Helpline (helpline@gustavus.edu). We would be happy to evaluate any suspect messages.
What is Suspicious?
- Any message with an email attachment you were not expecting. Even from someone you know.
- Any message asking you to follow a link and supply credentials.
- Any message asking you to reply with your password or any confidential information.
- Any message from an address where the from doesn't match the sender identity.
- Messages with typos, improper grammar or misspellings.
- Messages that create a sense of urgency, asking you to reply within a short period of time or your account will close
Examples of Phishing Attempts at Gustavus
Following are some phishing e-mails. Never reply to an e-mail that resembles one of these in any way. If you have any questions or are unsure whether an e-mail is a phishing attempt, please contact the Technology Helpline at 507-933-6111 or helpline@gustavus.edu.
Example 1
This mail is to inform all our webmail users that we will be maintaining and upgrading our website in a couple of days from now.
As a Subscriber you are required to send us your Email account details to enable us know if you are still making use of your mail box.
Be informed that we will be deleting all mail account that is not functioning to enable us create more space. You are to send your email account details which are as follows:
- User Name:
- Password:
- Date of birth:
- webmail Login:
You can also confirm your email address by logging into your webmail before sending us the required information.
WARNING: Any one that receive's this email and failed to respond to the mail will be deactivated immediately from our database.
Example 2
Dear: Email User.
We wish to bring to the notice of our Email Users about the on going email upgrading exercise in our email database, we wish to inform you that your email need to be upgraded. Note that any email account that fail to be upgraded is bound to be deleted from our email data base, in order for your email to be upgraded and not deleted, you are to enter your email PASSWORD and ID in the space provided (.........), send Your upgrading information to: emailaddress@domainname.com
Thank you for using our Webmail Service.
Customer Care Center
Example 3
Dear Gac Webmail Account Owner,
This Message is from gac.edu Message Center at all gac.edu Webmail Account Owner. We are currently modernizing our database and e-mail center and this will immediately close down all not used gac.edu Webmail Account to create more space for new accounts. To avoid having your gac.edu Webmail Account closed down after this modernizing, you will need to update below to Our Customer Care Center to know that this is an account currently used.
Confirm your email address below Username E-mail:
Email Password:
Date of birth:
Country or territory:
Attention! Account holder who refuses to update his account within Three days after receiving this warning will lose his account permanently. Thank you for using Gac Webmail!
Thank You!.