Email Phishing Scam

Email Safely

Avoid Phishing Scams

Avoid phishing scamsA phishing scam is an email fraud in which the perpetrator sends legitimate-looking emails that appear to come from a well-known and trustworthy website in an attempt to gather personal and financial information from a recipient. There are two types of phishing scams. The first type of scam asks you to respond to an email with your account password or Social Security number in order to prevent immediate closure of your bank account, email account, or other service. If you receive a message that asks you to send in your CNet password, it is a fraudulent email. The second type of scam asks you to click on a link to a fake site and log in with your password to verify your account. Be advised that IT Services will never request your password, nor will we ask you to change or "validate" your password at a site other than http://cnet.uchicago.edu. If you receive a message that asks for your CNet password, it is a fraudulent email. Once you've responded to either of these types of scams, you've placed your personal information in the hands of scammers who can misuse it.

 

Here are a few simple guidelines to avoid falling into phishing scams. See our Identify Phishing Scams page for a step-by-step guide on how to identify phishing emails, and our Phishing Examples page for real-life phishing examples.

 

 

Email Attachments and Viruses

One of the most common means by which computer viruses and worms spread is through email attachments. When opened, these attachments can give hackers complete control of your machine, or intiate an attack on another machine, or start sending out copies of itself to email addresses it finds on your hard drive - or all of the above. Malevolent software of this type has crippled personal machines, email servers, and networks at the University and everywhere on the Internet multiple times - and will again.

 

Here're a few simple guidelines to ward off malicious attachments: