Several new spear phishing emails are currently circulating on campus. Phishing messages are designed to steal information. They impersonate companies you routinely interact with, persons of authority, friends in social networking, or your technology support. They may entice you with a reward or threaten you with a bad outcome. They try to acquire personal account information directly from you through a reply, post, instant message, or webpage; or with malicious software installed on your computer when you click their link or open their attachment.
Keep in mind that you should:
- NEVER send your password to anyone for any reason. No company or support person should ever ask you for it in an e-mail.
- Do not open attachments that you are not expecting to receive.
- Do not click on suspicious links. Hover your mouse over the link text to make sure it matches the link displayed and matches the site’s web address (for example “uiowa.edu”), or manually type the web address into your browser.