Avoiding Phishing Attempts

“Phishing” (pronounced fishing) is when criminals send e-mails that look like they’re from SJU or another institution. They then try to lure you to fake websites, where you’re asked to disclose confidential information, for example, passwords or login IDs.
Like spam and junk email, these phishing emails are unfortunately becoming more and more abundant at the University. A good way to know that an email is fake and not from SJU IT is to please remember that employees of SJU will NEVER ask you to provide your User ID and Password via email.
Helpful Tips to avoid phishing attempts
• If you do not recognize the sender of an email, do not open it.
• If you do accidentally open it, do not click to download attachments or files. Instead, delete the message immediately.
• Do not reply to email or pop-up messages that ask for private, personal, or financial information.
• Look closely at links in an email. While many legitimate e-mails include links to other Web sites, remember that these links can also be forged.
• Pay attention to the URL of a web site. Phishers can make links look like they go to a legitimate place, but they actually send you to a different site.
• Use anti-virus and anti-spyware software, as well as a firewall, and update them all regularly.