{"id":404,"date":"2019-11-08T15:04:34","date_gmt":"2019-11-08T19:04:34","guid":{"rendered":"http:\/\/blog.uvm.edu\/whysecurity\/?p=404"},"modified":"2019-11-08T15:04:34","modified_gmt":"2019-11-08T19:04:34","slug":"go-phish","status":"publish","type":"post","link":"https:\/\/blog.uvm.edu\/whysecurity\/2019\/11\/08\/go-phish\/","title":{"rendered":"Go Phish!"},"content":{"rendered":"\n

Defeating phishing emails and securing your inbox<\/h3>\n\n\n\n

This post is part of a series contributed by the ISO’s 2019-2020 student intern Emily Connolly, ’20.<\/em><\/h4>\n\n\n\n

It\u2019s 8am on a Monday morning. You pour yourself a cup of coffee and open your laptop to read all the emails you\u2019ve been putting off since Friday afternoon.<\/p>\n\n\n\n

\"\"
This is you.<\/em><\/figcaption><\/figure>\n\n\n\n

When you open your mail inbox, this message is waiting: <\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n

\u201cOh no!\u201d you think. \u201cHave I not been getting my emails? What\ndoes this mean?\u201d<\/p>\n\n\n\n

\"\"
Hmm. Now this is interesting.<\/em><\/figcaption><\/figure>\n\n\n\n

Before doing anything, however, it\u2019s important to consider the threat of a phishing scam<\/em><\/a>\u2014 an attempt to steal your UVM credentials (your NetID and password). A phishing scam often comes in the form of an email, perhaps one asking for you to enter your UVM credentials or offering a well-paying part-time job from a professor working overseas. <\/p>\n\n\n\n

Often times, phishing scams will try to play off your emotions\u2014such as a mail message threatening to delete your account, the idea of an easy side job, or a compromised UVM NetID. The goal is to get you to act fast, getting you to enter in your UVM credentials to solve the problem quickly without noticing the signs that the email you received isn\u2019t actually legitimate.<\/p>\n\n\n\n

\"\"
It’s time to be a detective!<\/em><\/figcaption><\/figure>\n\n\n\n

Here are some things to look for when you see a suspicious\nmessage:<\/p>\n\n\n\n

  1. Check the email subject. Has it been left blank? Is it vague? Does it use a \u201cscare-tactic\u201d to get you to act fast? Do you feel pressured?<\/li>
  2. Who is it being sent by? Is it not a UVM email? Is it someone you don\u2019t know? If it is someone you know, is it a strange request for them to have?<\/li>
  3. Where are the links going to? Any email that asks you to enter your UVM password on a non-UVM web site is a phishing scam. UVM will never ask you to enter your UVM NetID and password on a non-UVM web page\u2014even if it looks like a UVM page, and even if it’s on a reputable site, such as Google Docs, or if it contains UVM graphics and you’ve been directed there by an email that appears to come from a UVM email address. Remember: The UVM Tower logo or any related graphic is not a guarantor of legitimacy. <\/li><\/ol>\n\n\n\n
    \"\"<\/figure>\n\n\n\n

    For example, this\nemail here is directing users to a Weebly site, and by mousing over the link,\nyou can see where the link will take you without clicking.<\/p>\n\n\n\n

    1. Does the email have strange capitalizations or odd grammar and spelling? Is there no greeting or sign off? Does the signature not match the email sender?<\/li>
    2. Is money involved? Do they want me to help them pass checks or move money with the promise of payment afterward?<\/li><\/ol>\n\n\n\n
      \"\"
      This email here contains the strange formatting and the promise of money. It’s a scam!<\/em><\/figcaption><\/figure>\n\n\n\n
      1. Ask your friends. Does the email seem like a\nscam to them? Sometimes, taking a step back from the situation can help you\nthink more clearly.<\/li><\/ol>\n\n\n\n
        \"\"
        “Harold, that’s not from UVM! They’ll never ask for you to enter your credentials on a non-UVM page!”<\/em><\/figcaption><\/figure>\n\n\n\n

        If you\u2019re even unsure about the legitimacy of a message, you can contact the Computing Help Line at 656-2604, or submit a help request online<\/a>. You can also directly contact the party involved by directly mailing the organization or office the email is purporting to be from, but not by replying to the suspicious email. Instead, use the email you have on file for the organization or the one they display publicly on their website.<\/p>\n\n\n\n

        You can also report phishing emails by forwarding the phishing email with full headers to abuse@uvm.edu. (To forward a message with headers, please see https:\/\/www.uvm.edu\/it\/kb\/article\/forwarding-full-mail-headers<\/a>)<\/p>\n\n\n\n

        What to do if you’ve fallen for a phishing scam<\/h3>\n\n\n\n
        \"\"
        Time to call the UVM Computing Helpline!<\/em><\/figcaption><\/figure>\n\n\n\n

        If you’ve followed the link in the message, or replied to this email or one like it, you should change your password immediately<\/strong> at www.uvm.edu\/account<\/a>. Contact the UVM Computing Helpline<\/a> if you need assistance changing your password. You should also change any similar passwords to your UVM password.<\/p>\n\n\n\n

        More info<\/h3>\n\n\n\n

        For more information about phishing scams, view our Web page on protecting your NetID and password<\/a>. <\/p>\n\n\n\n

        \"\"
        Yahoo! You’re now ready to conquer the inbox!<\/em><\/figcaption><\/figure>\n","protected":false},"excerpt":{"rendered":"

        Defeating phishing emails and securing your inbox This post is part of a series contributed by the ISO’s 2019-2020 student intern Emily Connolly, ’20. It\u2019s 8am on a Monday morning. You pour yourself a cup of coffee and open your laptop to read all the emails you\u2019ve been putting off since Friday afternoon. When you … <\/p>\n

        Continue reading “Go Phish!”<\/span><\/a><\/p>\n","protected":false},"author":4920,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[607,351621],"class_list":["post-404","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-phishing","tag-student_contributor","entry"],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Emily","author_link":"https:\/\/blog.uvm.edu\/whysecurity\/author\/econnol2\/"},"_links":{"self":[{"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/posts\/404","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/users\/4920"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/comments?post=404"}],"version-history":[{"count":6,"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/posts\/404\/revisions"}],"predecessor-version":[{"id":419,"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/posts\/404\/revisions\/419"}],"wp:attachment":[{"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/media?parent=404"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/categories?post=404"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.uvm.edu\/whysecurity\/wp-json\/wp\/v2\/tags?post=404"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}