什么是网络钓鱼?
网络钓鱼 is a cybercrime in which a target or targets are contacted by email, telephone or text message by someone posing as a legitimate institution to lure individuals into providing sensitive data such as personally identifiable information, 银行, 以及信用卡详细信息, 和密码. – 网络钓鱼.org
预防网络钓鱼技巧
- NEVER share or give away your credentials.
- Install antivirus and malware software on your personal devices.
- Ensure antivirus and anti-malware software is updated.
- Scan your computer for viruses and malware frequently.
- Do not open attachments or click on the link if you do not know and/or trust the sender.
How can I tell if an email is a 网络钓鱼 attempt?
The TSU campus is often a target of 网络钓鱼 scam emails. The emails look like official emails, but Information 技术 (IT) is not sending them. It is important for you to recognize these emails.
OIT will never ask you to send your password in an email. If you receive an email that asks you to send your password, you should delete it immediately.
注意from电子邮件地址
Check the From, Reply-To, and Sender addresses. IT will always send official emails using yqczg.net. Here are some sample 网络钓鱼 From and Reply to addresses:
- Internet Service Manager info@customerservices.edu
- WEBMAIL帮助台info@helpdesk.com
检查主题栏
Here are some sample 网络钓鱼 email subject lines:
- WEBMAIL ACCOUNT DE-ACTIVATION UPGRADE.
- 验证您的 .edu电子邮件帐户!
检查消息
The message of a 网络钓鱼 email is trying to trick you into sending your personal information. If you send your ID and password, scammers can use your email account to send spam. Always be skeptical of official-looking emails.
- “Verify your email address”: IT will never ask you to “verify your account” or “upgrade your account.”
- Be skeptical of any emails that ask you to “verify your account.”
检查签名
注意邮件签名. Generic signatures or non-standard formats are often clues that an email is a 网络钓鱼 email. If it doesn't look right, contact the IT Service Center to confirm if the email is legitimate. Some examples of “generic” signatures include:
- 邮箱团队.
- Edu维护团队.
- 教育(.Edu) IT Service 帮助 Desk Administrator.
- Webmail帮助台.
例子:
- Emails to confirm your username and password.
- Unexpected emails with links to a website to enter your username and password.
- Any unexpected solicitation to confirm your credit card information.
- Financial institutions emailing to confirm personal information.
- Emails to confirm your social security number.
- 带有链接的意外电子邮件.
- Emails claiming to have personal information about you.
- “Join this Application and enter your password” emails.
For more information about 网络钓鱼 and common scams, visit http://www.hoax-slayer.net/.
需要帮助?
If you receive an email and it makes you suspicious, you should contact the IT Service Center. They will help you determine if the email is legit or a 网络钓鱼 scam.
Here are the ways you can report a suspicious email:
- 将电邮转寄至 itsecuritygroup@yqczg.net.
- Call IT Service Center at 713-313-4357.