Security Awareness - Phishing

TWU IT sees several phishing attacks on our campus every day.  We also run our own simulated phishing attacks and provide training for people who fall victim to those.  Most phishing emails have easy ways to tell that they are not legitimate.  A sample email is below and we have included the pieces that should trigger a red flag to someone sensitive to phishing emails.  See below the image for an outline of the flags.

  1. From "IT@twu.ca": Emails sent from a generic address should always raise suspicions especially if the context of the rest of the email triggers other flags.  We received a few questions as to whether or not it is possible for someone outside TWU to fake an "@twu.ca" email address and the answer to that is yes!
  2. "Change of Password Required Immediately":  Any time an email requests urgent action be on the alert for a scam.  If you think it may be legitimate, contact the sender by phone to verify before following through.
  3. "In order to prevent further damage": Another flag is when you are given a message of impending doom if you don't act know.  This attempts to prey on your sense of urgency to do the right thing ... don't do it.  Once again, if you think it might be legitimate, and it rarely is, verify by phone first.
  4. "Please click here to do that":  Asking for a click is a red flag as it is requesting immediate action.
  5. "Change Password" link: You can't see this in the image above, but if you hover your mouse over a link in email and look in the bottom of your email client/browser you will see where that link will take you.  If it looks suspicious or doesn't match with where you think it should take you, don't take the bait!  A less known trick on mobile email clients is that you can usually press and hold a link to bring up a window that shows you where the link will take you.  By far, this is the #1 way to detect a potentially malicious email.

Details

Article ID: 66668
Created
Mon 11/5/18 12:03 PM
Modified
Fri 5/21/21 10:49 AM