Recognize and Report Email Scams
Phishing is a common scam tactic to trick you into revealing sensitive data by visiting a fraudulent website, opening an infected document, or logging in to "validate your email account."
A friend or colleague shared a document with you! Log in now or your account will be shut off! Click this link to view a secret message!
Is the email real? How do you know?
In a phishing scam, an attacker sends an email or other electronic message posing as someone their target may know or on behalf of a legitimate organization. Their goal is to trick people into revealing sensitive data such as their banking/credit card details, personal or sensitive information, and usernames/passwords. That information is then used to access important accounts and can result in identity theft and financial loss.
These emails, websites, documents, or login pages may be obviously phony, but others may look just like the University’s login page. Higher education institutions are popular targets for phishing.
Recognize Phishing Scams
- You receive a message you were not expecting.
- You receive a message with strange or unexpected content, or is delivered in an unusual way.
- It contains a link that, when you preview by hovering your cursor over it, shows a URL that seems strange or unusual.
- It appears to be from someone you know, but they reached out in an unusual way, such as over text instead of email.
- It appears to be from someone you know, but the language or tone is different from how they usually communicate.
- It appears to be from a real organization, but the message has misspellings and grammatical errors, or contains unusual images or attachments.
- It asks you to open a shared document you are not expecting, to bypass policy/procedures, or to keep something secret.
- Mismatch in the “From” name and the email address used.
- The displayed name is a University colleague, instructor, or friend, but is not sent from their known @umn.edu email address.
- Emails from high-ranking UMN employees or seemingly official senders like “UMN Edu Team,” “Security,” “HelpDesk,” but do not use an @umn.edu email address.
- The message appears to be from a reputable company, like Microsoft or your bank, but the email address is from another email domain like gmail.com or microsoftsupport.ru.
- Watch for subtle misspellings of the legitimate email domain name, such as micros0ft.com where the second "o" has been replaced by a “0”.
- Emails that prompt you to log in to something in an unusual or suspicious way, such as:
- Via an emailed QR code or Google form.
- Over text message.
- From a link to a login page not ending in “.umn.edu” where you need to input your Internet ID, password, and a Duo Passcode.
- You receive a message that elicits a high sense or urgency or threatens negative consequences if you do not act quickly.
Take Immediate Action If You Think You Are a Victim
- Approved a Duo prompt (Push or Phone Call) that you did not initiate.
- Were asked to enter a 6-digit Duo Passcode when you don’t normally use them.
- Replied to a scam email with your personal information or clicked on a suspicious link.
- Opened an unexpected attached file or shared document from an email.
Visit identitytheft.gov to learn about immediate protective actions you can take.
Report Email Scams
- If in doubt, reach out! Ask University Information Security (UIS) for a second opinion by forwarding the original email to [email protected].
- Help educate Google’s filters by selecting the Report spam button, or More and then Report phishing option, in Gmail.
Download and post our Recognize and Report Email Scams handout (PDF). It can help you remember how to identify and protect yourself from Phishing scams and identity theft.
A strong password or passphrase uses a combination of length and character types. Learn what to do and not to do to keep it safe. For extra protection, use two-factor authentication where available.ChallengeMany tools...
Get tips on how to choose safe passwords or passphrases, how to keep yourself safe from identity theft, and how you can help protect University information.
Your UMN password (also known as your Internet ID Password) is the password associated with your University email address that unlocks many secure resources at the University such as MyU, Google Apps, Canvas, Eduroam...
Follow a few steps to change your Internet ID password with a Technology Help staff member. If you already have security questions set, you may change it yourself on the Internet Account Options page.
If you have questions about who is responsible for your data, its security level, and applying information security standards, email [email protected].
OnGuardOnline.gov provides information on how to reduce the amount of spam you get and how to report non-University related spam to the Federal Trade Commission (FTC).
To avoid the risk of fraud and loss of money, follow these best practices when making tuition payments. Resource from University vendor Flywire. Learn more at isss.umn.edu/new/tuition.html.