OREGON STATE UNIVERSITY
Open search box
From: The Office of Information Security
Dear OSU Students,
We have observed a dramatic increase over the last 48 hours in phishing attacks targeting the OSU community. These attacks are using common tactics to gather login information and compromise the accounts of students, employees and other OSU community members. Please take note of such efforts and protect your security and the security of others. Here are a few tips for spotting and dealing with these phishing attempts:
· If you see something, say something. If you notice an email that seems like it may be a phishing attempt (contains spelling errors, is poorly written, etc.), report it to OSU’s Office of Information Security immediately by reporting the message to [email protected].
· Don’t send money if asked or spend money if requested if you don’t know where it’s going. OSU instructors and employees will never ask you to buy gift cards or send money to other students.
· Beware of job scams. Scammers often send fake job opportunities to swindle students out of money. These scammers often pose as professors or job recruiters from private employers or companies and offer large sums of money. Learn more about recognizing these scams on the Office of Information Security website.
· Look closely at links and URLs provided within emails. Hover your cursor over links in an email to show the URL destination – if you don’t recognize the URL or if it appears suspicious, report the message.
· Watch out for fake login pages. If you are taken to a page that prompts you for your OSU Login credentials, look at the URL in your browser to ensure it appears legitimate.
· Don’t download attachments from strangers. Don’t download or open attachments from email senders that you don’t recognize, even if they are from an OSU email address.
· Don’t fall for attempts at false urgency. If an email is asking you to take urgent action, it is often an attempt to get you to click on a malicious link.
If you have questions or concerns, please review information available on the Office of Information Security website, watch this overview on how recognize recent phishing emails or contact the team at [email protected].
Sincerely, David
David McMorries, Chief Information Security Officer