Computer and Information Security

Printer-friendly versionSend to friend

Phishing Scams

St. Edward's will never ask you via e-mail to provide your password.  Phishing is the fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details, by masquerading as a trustworthy source. Phishing e-mails are a daily occurrence in e-mail but recently many attempts have targeted the St. Edward's community.

What happens when you reply to a phishing attempt?

Once compromised, your e-mail account will be used to send spam to thousands of people. When that happens, St. Edward's e-mail domain becomes suspected of being a source of spam which can lead to all stedwards.edu accounts being blocked by other e-mail providers.

Recognizing Phishing Attempts

You can recognize a phishing attempt from the following characteristics:

  • It asks for a username and password. No one from St. Edward's will ever ask you to provide your password via e-mail.
  • The From address is bogus: for example: "hlpdek@stedwards.edu"
  • The Reply-To address is clearly not a SEU address: for example: "customercaresupportteam@info.lt"
  • The e-mails are usually filled with misspellings.

Never give your password out via email to anyone--not SEU, not your bank, not your credit card company, no one! If an e-mail has a link to a site that asks you to enter your login and password, do not click on it! Use the web address you know to access the site, not a link you have received in the e-mail.

Many sophisticated phishing attempts make use of company logos to make the site seem legitimate. Another way you can check links in e-mail messages is to hover your mouse, rather than clicking, over the link and then look at the resulting web address. Most phishing attempts will disguise the real web address with one that looks legitimate until you do this.

If you want to test your ability to spot a phishing attempt there is a good quiz that presents ten example e-mails and asks you to determine whether or not they are phishing attempts.

Protecting Your Computer

New viruses and worms are being released daily. The majority of these exploit unpatched Windows Operating System computers. The Macintosh Operating System needs to be patched and have virus protection also, but the vast majority of worms and viruses target the Windows OS. To protect your Windows OS computer it is essential that you do the following:

  1. Run Windows Update and install critical patches.
  2. Install and update virus protection software. Symantec AntiVirus is installed on all university owned computers and is available for free to SEU students. See intructions for Updating Virus Definitions.
  3. Run Microsoft Office Updates.
  4. Never open an e-mail attachment that you were not expecting. File types associated with viruses are automatically removed from St. Edward's e-mail.

How can I prevent worms or viruses from infecting my computer?

Take the following steps to help prevent infection on your home system:

  • Don't open unknown attachments.
  • Use up-to-date antivirus software.
  • Enable a firewall on your home computer. This is not necessary on the St. Edward's campus.
  • Get the latest computer updates.
  • Use strong passwords.

If you think you are infected call the Computer Help Desk at 448-8443.

Web Safety Resources

Check out these web safety sites created for more general information:

 

 

Tags: