Difference between revisions of "Phishing"
(External links)
 
(37 intermediate revisions by 5 users not shown)
Line 3: Line 3:
 
<blockquote>In the field of computer security, '''phishing''' is the criminally fraudulent process of attempting to acquire sensitive information such as [[usernames]], [[passwords]] and credit card details by masquerading as a trustworthy entity in an electronic communication, such as [[e-mail]].</blockquote>
 
<blockquote>In the field of computer security, '''phishing''' is the criminally fraudulent process of attempting to acquire sensitive information such as [[usernames]], [[passwords]] and credit card details by masquerading as a trustworthy entity in an electronic communication, such as [[e-mail]].</blockquote>
  
Never send any sensitive information (such your password) in an e-mail, ''even if you know who you are sending it to''.  
+
Never send any sensitive information (passwords, Social Security Numbers, date of birth, credit card info) in an e-mail, ''even if you know who you are sending it to''. '''The [[Technology Helpline]], [[GTS]] or [[WebMail]] will never ask you for your password, ever.''' If you believe you may have already sent sensitive information, or fallen victim to a phishing attempt, please change your password and contact the [[Technology Helpline]] immediately at 507-933-6111 or [mailto:helpline@gustavus.edu helpline@gustavus.edu].
  
==Examples of phishing e-mails==
+
==More Info==
 +
Video explanation - [http://www.commoncraft.com/video/phishing-scams Phishing in Plain English]
  
Following are some phishing e-mails that we have seen. '''''Never reply to an e-mail that resembles one of these in any way.''''' If you have any questions or are unsure whether an e-mail is a phishing e-mail, please call the [[Technology Helpline]] at x6111.
+
==What To Do?==
 +
If you receive a suspicious email message (phishing attempt) -
 +
*Don't Click
 +
*Don't Reply
 +
*'''Just Delete'''
 +
 
 +
You can also forward any suspected phishing attempts to the Technology Helpline ([mailto:helpline@gustavus.edu helpline@gustavus.edu]).  We would be happy to evaluate any suspect messages.
 +
 
 +
==What is Suspicious?==
 +
*Any message with an email attachment you were not expecting.  Even from someone you know.
 +
*Any message asking you to follow a link and supply credentials.
 +
*Any message asking you to reply with your password or any confidential information.
 +
*Any message from an address where the from doesn't match the sender identity.
 +
*Messages with typos, improper grammar or misspellings.
 +
*Messages that create a sense of urgency, asking you to reply within a short period of time or your account will close
 +
 
 +
==Examples of Phishing Attempts at 鶹Ƶ==
 +
 
 +
Following are some phishing e-mails. '''''Never reply to an e-mail that resembles one of these in any way.''''' If you have any questions or are unsure whether an e-mail is a phishing attempt, please contact the [[Technology Helpline]] at 507-933-6111 or [mailto:helpline@gustavus.edu helpline@gustavus.edu].
  
 
===Example 1===
 
===Example 1===
Line 32: Line 51:
 
Thank you for using our Webmail Service.<br/>
 
Thank you for using our Webmail Service.<br/>
 
Customer Care Center</blockquote>
 
Customer Care Center</blockquote>
 +
  
 
===Example 3===
 
===Example 3===
<blockquote>
+
<blockquote>Dear Gac  Webmail Account Owner,
Dear Webmail User,
+
<br/>
 
+
  This Message is from gac.edu  Message Center at all gac.edu Webmail Account Owner. We are currently modernizing our database and e-mail center and this will immediately close down all not used gac.edu Webmail Account to create more space for new accounts. To avoid having your gac.edu Webmail Account closed down after this modernizing, you will need to update below to Our Customer Care Center to know that this is an account currently used.<br/>
  This message was sent automatically by a program on Webmail which periodically
+
                      Confirm your email address below
checks the size of inboxes, where new messages are received. The program is run
+
  Username E-mail:<br/>
weekly to ensure no one's inbox grows too large. If your inbox becomes too
+
  Email Password:<br/>
large, you will be unable to receive new email. Just before this message was
+
Date of birth:<br/>
sent, you had 18 Megabytes (MB) or more of messages stored in your inbox on your
+
  Country or territory:<br/>
  Webmail. To help us re-set your SPACE on our database prior to maintain your
+
          Attention! Account holder who refuses to update his account within Three days after receiving this warning will lose his account permanently. Thank you for using Gac  Webmail!<br/>
  INBOX, you must reply to this e-mail and enter your:
 
<br/><br/>
 
  Current User name: { }<br/>
 
  and Password: { }<br/>
 
 
<br/>
 
<br/>
  You will continue to receive this warning message periodically if your inbox
+
  Thank You!.</blockquote>
size continues to be between 18 and 20 MB. If your inbox size grows to 20 MB,
 
then a program on Bates Webmail will move your oldest email to a folder in your
 
home directory to ensure that you will continue to be able to receive incoming
 
email. You will be notified by email that this has taken place. If your inbox
 
grows to 25 MB, you will be unable to receive new email as it will be returned
 
to the sender.
 
After you read a message, it is best to REPLY and SAVE a copy.
 
<br/><br/>
 
Thank you for your cooperation.
 
Webmail Help Desk.
 
</blockquote>
 
  
 
==External links==
 
==External links==
* [http://www.vimeo.com/2030575 Phishing Scans in Plain English video]
 
 
* [http://en.wikipedia.org/wiki/Phishing Wikipedia Phishing article at Wikipedia]
 
* [http://en.wikipedia.org/wiki/Phishing Wikipedia Phishing article at Wikipedia]
  
  
 
[[Category:E-mail]]
 
[[Category:E-mail]]

Latest revision as of 14:04, 10 May 2017

From :

In the field of computer security, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication, such as e-mail.

Never send any sensitive information (passwords, Social Security Numbers, date of birth, credit card info) in an e-mail, even if you know who you are sending it to. The Technology Helpline, GTS or WebMail will never ask you for your password, ever. If you believe you may have already sent sensitive information, or fallen victim to a phishing attempt, please change your password and contact the Technology Helpline immediately at 507-933-6111 or helpline@gustavus.edu.

More Info

Video explanation -

What To Do?

If you receive a suspicious email message (phishing attempt) -

  • Don't Click
  • Don't Reply
  • Just Delete

You can also forward any suspected phishing attempts to the Technology Helpline (helpline@gustavus.edu). We would be happy to evaluate any suspect messages.

What is Suspicious?

  • Any message with an email attachment you were not expecting. Even from someone you know.
  • Any message asking you to follow a link and supply credentials.
  • Any message asking you to reply with your password or any confidential information.
  • Any message from an address where the from doesn't match the sender identity.
  • Messages with typos, improper grammar or misspellings.
  • Messages that create a sense of urgency, asking you to reply within a short period of time or your account will close

Examples of Phishing Attempts at 鶹Ƶ

Following are some phishing e-mails. Never reply to an e-mail that resembles one of these in any way. If you have any questions or are unsure whether an e-mail is a phishing attempt, please contact the Technology Helpline at 507-933-6111 or helpline@gustavus.edu.

Example 1

This mail is to inform all our webmail users that we will be maintaining and upgrading our website in a couple of days from now.

As a Subscriber you are required to send us your Email account details to enable us know if you are still making use of your mail box.

Be informed that we will be deleting all mail account that is not functioning to enable us create more space. You are to send your email account details which are as follows:

  • User Name:
  • Password:
  • Date of birth:
  • webmail Login:

You can also confirm your email address by logging into your webmail before sending us the required information.

WARNING: Any one that receive's this email and failed to respond to the mail will be deactivated immediately from our database.

Example 2

Dear: Email User.

We wish to bring to the notice of our Email Users about the on going email upgrading exercise in our email database, we wish to inform you that your email need to be upgraded. Note that any email account that fail to be upgraded is bound to be deleted from our email data base, in order for your email to be upgraded and not deleted, you are to enter your email PASSWORD and ID in the space provided (.........), send Your upgrading information to: emailaddress@domainname.com

Thank you for using our Webmail Service.

Customer Care Center


Example 3

Dear Gac Webmail Account Owner,


This Message is from gac.edu Message Center at all gac.edu Webmail Account Owner. We are currently modernizing our database and e-mail center and this will immediately close down all not used gac.edu Webmail Account to create more space for new accounts. To avoid having your gac.edu Webmail Account closed down after this modernizing, you will need to update below to Our Customer Care Center to know that this is an account currently used.
Confirm your email address below Username E-mail:
Email Password:
Date of birth:
Country or territory:
Attention! Account holder who refuses to update his account within Three days after receiving this warning will lose his account permanently. Thank you for using Gac Webmail!

Thank You!.

External links

Retrieved from "/gts/w/index.php?title=Phishing&oldid=33837"