Phishing is the practice of sending fraudulent emails that resemble emails from reputable sources. The aim is to steal sensitive data like credit card numbers and login information. It’s the most common type of cyber attack.
Phishing attacks are designed to trick users into taking actions that are not in their best interests. They can be avoided by doing the following:
- Verify message sender
- Before clicking a link, verify that it goes to where it claims by hovering over it and checking the destination URL and browse to the target site directly in your browser.
- Be cautious of attachments. Do not open a file that you’re not expecting.
- Don’t enter your credentials into a site that you do not recognize.
- Create a SPAM filter that detects viruses and blank senders.
- You should always inform ITS of any suspicious emails you receive but when in doubt, forward the email in question to firstname.lastname@example.org so we can verify
- If you would like help setting up filters in your email you can use this link to put in a service request and a member of our Training Team will schedule a 1:1 appointment with you.
For more information please check out this article.