ISO - Email Phishing


This article explains Email Phishing. This common fraud tactic is used by hackers to deceive recipients into revealing sensitive information or downloading malicious software.

Please visit the Information Security Office (ISO) website to stay updated on current scams and check the List of Active Phishing Alerts (ISO).

Characteristics of Phishing Emails

Phishing is a social engineering tactic used by bad actors and often includes one or more of the the following warning signs:

  • Urgent or Exciting Language: Designed to prompt quick action without thinking.
  • Requests for Sensitive Information: Such as passwords, bank details, usernames, credit card numbers, and social security numbers.
  • Fake URLs: Appear legitimate but redirect to dangerous sites.
  • Attachments: Encourage opening due to urgency or promises of benefits.
Do Not Trust & Always Verify

Tips for Handling Suspicious Emails:

  • Do Not Click Links or Open Attachments: Especially if unexpected or from unknown sources.
  • Verify Information: If unsure about a website's legitimacy, contact the company or organization directly.
  • Check Links Carefully: Use internet searches to confirm the correct site.
  • Protect Personal Information: Never provide personal or company information via email, text, or phone.
If You Suspect a Phishing Attempt

Actions to Take if You Suspect a Phishing Attempt

  • Change Your Password: Immediately if you believe you've revealed sensitive university information, such as your NetID password.
  • Contact the Spoofed Company: If you provided personal information that could be used for identity theft or fraud.
  • Report Suspicious Emails: If not listed on our Phishing Alerts page, forward the email to UA Information Security (ISO) at phish@arizona.edu.

____________________________________

How to Share a Suspicious Email with ISO

____________________________________

The ISO office collaborates with UITS to minimize phishing threats and analyze security trends on campus.

For additional questions, comments, or concerns, contact UA Information Security at security@arizona.edu or (520) 626-8324.