Don’t Get Hooked By Phishers
Not sure if emails are for real? You can detect a fake by watching out for:
- Requests for user IDs and passwords. NEVER email your User IDs and passwords to anybody. UM and other legitimate organizations will never ask you to do this. If you do respond, change your password immediately and contact Medical IT at firstname.lastname@example.org.
- Fake links. Check any links by moving your mouse over them before clicking. For example, try moving your mouse over this link: http://www.boguslink.com. The link is not what it appears to be!
- Urgent wording. Hackers attempt to create a sense of urgency so that people immediately respond without thinking. Don’t be fooled if an email says, “Verify your account info now or your account will be suspended!”
If you’re still not sure if an email is for real, contact your IT support group at email@example.com
For More Information
- Spear Phishing: Linked to APT Attacks
- Spear Phishing: Human Error Remains the Weakest Link in Security
- Beware of “Phishing”
Published: October 22, 2013