Phishing and Social Engineering
We are experiencing a severe increase in phishing activity. We’d like to remind users to be especially careful about clicking on email links and attachments.
The most recent campaign includes a button like the one shown below. Many users are clicking through because the email subject appears to be a reply to an earlier message.
At Tulane, there are many reasons why adversaries are interested in stealing your username and password, and their attempts are becoming ever more sophisticated. Successful hackers can be richly rewarded with personal information, intellectual property, and credentials to additional user accounts.
What can you do to protect your accounts?
- Never provide usernames, passwords, or other sensitive personal information through email.
- Never click on links or attachments from senders that you do not recognize. Be especially wary of .zip or other compressed or executable file types.
- Install OpenDNS malware blocking software to protect yourself when you are away from the Tulane network
- Share our phishing awareness and safe computing training with Tulane colleagues
- If you can’t tell if an email is legitimate or not, please contact the Service at firstname.lastname@example.org or call (504)988-8888.
Want to receive all phishing alerts? Sign up at https://listserv.tulane.edu/cgi-bin/wa?A0=TUPHISHINGALERT-L and click on "Subscribe" in the left-right-hand navigation.