Recent Phishing Email Attempts

Hi Folks,

In light of recent phishing emails received on campus we wanted to provide some helpful tips. Additionally, if you happen down our hallway, you will also see a large eye catching poster outlining some common social engineering attacks.

Phishing is an attempt by an individual or group to solicit personal information from unsuspecting users by employing social engineering techniques, or tricking them into thinking that the activity is legitimate or necessary.

What you can do to protect yourself

  • Be wary of any “the house is on fire” type emails, these tend to request sensitive information urgently (with lots of capital letters, do it TODAY or you will lose access, etc.)
  • Be wary of unsolicited emails asking for personal information. Do not provide personal information or internal company information unless you have verified that the sender is legitimate. University/College IT staff will never ask you for your password.
  • Be wary of hyperlinks: Avoid clicking on hyperlinks in emails; type the URL directly into the address bar instead. If you choose to click on a link, ensure it is authentic before clicking on it. You can check a hyperlinked word or URL by hovering the cursor over it to reveal the full address.
  • Report suspicious emails. Forward the email to your IT department before you click on them. The time it takes for us to review it will always be less than the time it takes to fix/reset things after the fact.

If you’re not sure it’s safe to click, download or install, please contact us or your local IT unit!  Call 970-491-5037 or email us at WCNR_IT_Support@mail.colostate.edu

Should I trust this email? Email is not really validated, it is safest to never outright trust any email message. That is why all this information is also on the WCNR IT Security and Privacy blog at https://sites.warnercnr.colostate.edu/it/ or by going to the main college web page ( https://warnercnr.colostate.edu/  ) and clicking on “Menu” –> “Information Technology” –> “Security Awareness” –> “College Security Blog”. Since you can verify that site to be a university web site, it is a better, more trustworthy source of the links. If you go there, thanks for being extra careful!

_______________________________________________

STEPHEN OGLESBY

IT SYSTEMS ADMINISTRATOR

Warner College of Natural Resources

http://warnercnr.colostate.edu/it-support-home

C O L O R A D O  S T A T E  U N I V E R S I T Y

Leave a Comment