Reminder about Phishing Scams

From ITS Wiki

Jump to: navigation, search

What is phishing?

Phishing is a fraudulent process used by spammers to acquire sensitive information from users such as usernames, passwords. Email recipients are often deceived by phishing attempts since messages appear to be sent by legitimate and trustworthy sources.

Why do I care?

If spammers have your username and password they can use your account to send spam through Centre’s system. Other systems, Google, Microsoft, Yahoo for example, will start marking our email as spam and rejecting it. One high jacked email account can (and has in the past) caused our email to be rejected, and once you’re on a “block list” it is very difficult to get taken off.

How does this get through our system?

Our email is filtered by a Barracuda SPAM Firewall before it is delivered to campus inboxes. The Barracuda is an industry leading product and has shown over time to be a good solution for us. For example, we received on average 80,000 emails a day from the internet and our solution blocks 90% completely from your inbox and another 4% are tagged as possible spam and delivered. We also have very few legitimate messages that are blocked as spam. However no system is perfect and phishing emails do get through.

How can I avoid phishing scams?

Centre College and other reputable organizations will never use email to request that you reply with your password, Social Security number, or confidential personal information. Be suspicious of any email message that asks you to enter or verify personal information, through a web site or by replying to the message itself. Never reply to or click the links in a message. If you think the message may be legitimate, go directly to the company's web site (i.e., type the real URL into your browser) or contact the company to see if you really do need to take the action described in the email message.

Legitimate emails from ITS will contain one of the following in the subject line:

[CentreITS:CIO] [CentreITS:SYSADMIN] [CentreITS:ADMINCOMP]