Log on to CITS: Phishing Scams on the Rise
The Internet has evolved over the years to become essential to the way we live and work—as a source of information, and as a primary means of communication and collaboration. Unfortunately, with all the advantages of Internet use, there are some obstacles.
For example, in the past few months the University has been besieged with a higher than normal number of e-mail phishing attempts that ask recipients to supply passwords or other personal information. University filters manage to stop most viruses and spam—almost 98 percent of the mail that comes to the campus falls into these categories and is blocked—but some messages still get through. These e-mails attempt to gain access to information, which they should not have. The sender’s address is forged, or spoofed, to make the request seem credible. It may or may not be an actual e-mail address, but it is not where the e-mail originated. Some examples of recent phishing attempts are listed at www.umaryland.edu/helpdesk/general/phishingexamples.html.
When dealing with phishing attempts, please remember the following:
- Do not respond to the phishing message for any reason.
- Send the message to email@example.com as an attachment with the entire phishing e-mail in its original format. CITS administrators will use the information from these e-mails to adjust campus filters and block future messages from this sender.
- Never send passwords via e-mail.
If you have responded to a phishing message with your password, please notify the IT Help Desk and change your password immediately. If possible, send a copy of the original phishing message to firstname.lastname@example.org as an attachment. For additional information, contact the IT Help Desk at www.umaryland.edu/helpdesk or visit www.umaryland.edu/helpdesk/general/phishing.html.