IT Security Alerts and Advisories 





Phishing for Passwords


There have been a number of recent email-based "phishing" attempts in which recipients are requested to provide their login credentials.  While many of these campaigns look obviously suspicious, some have been very carefully crafted so as to appear to be genuine.

Please be advised that IT Services will never request users to divulge their login information via email.  If you are the recipient of such an email request, please ignore it and delete it. 

If you suspect that you may have been a victim of such a phishing attempt, you should change your password immediately.

 For more information on phishing, see the following article entitled Anatomy of a Phishing Attempt.

More URL Tips

Here are a couple of things to watch out for concerning  URLs. . .

Tip #1

After navigating to a website, check and confirm that the URL displayed in your browser’s address bar matches the intended destination.

For example, if you were visiting the website of security vendor Sophos, the displayed address should read www.sophos.com.

If you see something else like www.sophos.badurl.com, you can be sure that you have been re-directed to some other site.

Tip #2

Never click on a link inside an email message.

If you believe that the link is valid, manually type the URL into the address bar of your browser.

Again, check the displayed address a second time to ensure that you have been directed to the intended site.

   
   
   
   

 

 

 

Twitter Facebook Linkedin Flikr UFV on Google+ YouTube goUFV