Phishing

Identify Phishing Emails
Phishing emails are malicious attempts to obtain sensitive information such as usernames, passwords, and credit card details by disguising themselves as trustworthy entities. This guide will help you identify phishing emails and protect your personal information. 
 
 1. Suspicious Senders 
 
 Always check the Sender's email address
 
 Look for subtle misspellings or unusual domain names.  
 
 
 
 
 2. Generic Greetings 
 
 Be cautious of generic greetings like "Dear Customer" instead of your actual name.  
 
 
 3. Urgent or Threatening Language  
 
 Beware of emails that create a sense of urgency or fear.

 
 Phrases like "Your account will be suspended," or "Immediate action required" or "URGENT" 
 Phishing emails may also promise rewards of some kind.  
 
 
 
 
 4. Mismatched URLs 
 
 Ensure the URLs in the email match the legitimate website.

 
 Hover over the links to see the actual URL.  
 
 
 
 
 
 5. Poor Grammar and Spelling 
 
 Look for spelling and grammatical errors
 
 Phishing emails often contain typos and awkward phrasing 
 This is often due to attackers using Google Translate to translate to English.  
 
 
 
 
 6. Unexpected Attachments or Links 
 
 Do not open unexpected attachments or click on suspicious links
 
 A link might say 'www.yourbank.com' but could actually lead to a different website  
 Do not open an attachment if it is an .exe (windows) or .dmg (MacOS) 
 
 
 
 
 7. Request for Personal Information 
 
 Legitimate organizations generally do not ask for sensitive information via email.

 
 Emails asking for passwords, social security numbers, or credit card details are likely phishing attempts. 

Report Phishing Emails
I think I've received a Phishing email! What should I do!?" 
 
 
 Do not click on links or open attachments 
 
 
 Avoid interacting with any content in the email 
 
 
 
 
 
 
 Verify the Sender  
 
 
 Contact the organization directly using official contact details that are not provided in the email.  
 
 
 
 
 
 
 Report the Email  
 
 
 Use the Report Phishing button in Outlook to Report phishing emails to the IT Department.  
 
 
 
 
 
 
 Delete the Email  
 
 
 Remove the phishing email from your inbox and trash folders after reporting it to IT.  
 
 
 
 
 
 Report Phishing (Outlook Classic) 
 You must report a Phishing email using a PC or Mac 
 
 Navigate to  Inbox 
 Select the email you wish to report, and ensure the email is highlighted.  
 Under the  Home  tab, in the far-right corner, select  Phish Alert Report 
 The email is reported to the IT Department for review. 
 
 
 Report Phishing (Outlook New) 
 These instructions also work for the Outlook Web Application (OWA) 
 
 Navigate to Inbox  
 Select the email you wish to report, and ensure the email is highlighted. 
 Select the  Home  tab 
 Use the  Report  button (Located next to  Reply ) to report the email.  
 A popup will appear asking if you're sure you'd like to report the email. Select Report.  
 The email is reported to the IT Department for review