- PhD Candidates
- Tools and resources
Phishing is an online fraud designed to steal passwords and credit card numbers and personal account information.
Phishing messages are usually an invitation to confirm an e-mail address, or fake invoices, payment requests of orders that were never placed. They usually show a link that looks legitimate and well known and they ask to enter personal data.
The administrator of a computer service will never need your password to solve a problem. Any message that asks for a password is a trap.
How can I recognise phishing
A phishing example
From: USI Webmail [mailto:email@example.com]
Sent: lunedì, 22. dicembre 2014 12:35
Subject: e-mail security alert
There was something unusual about a recent sign-in for your mail account. Please review your recent activity and we will help you take corrective measures.
Review recent activities
Università della Svizzera italian
What shall I do if I receive phishing?
What if I have already replied to the message or followed the link?
If you did it from your USI account, change the password right away through webmail (www.mail.usi.ch): enter your mailbox, click on Options (upper right) and choose Change password..
Why are hackers interested in USI accounts?
In most cases, the hackers have used hacked mail boxes to send new phishing from our mail server. Illegal activities are therefore carried out in the name of the user, who could also lose all the messages in the box, receive SPAM and be blocked by other users.
In the meantime, the USI mail system could gain a bad reputation, be blocked by other Institutes as SPAM, and legitimate messages will not be delivered.
It might take weeks to get out of the situation and in some cases, a payment of a fee is required,
To mitigate the problem we keep people informed and we block the hacked accounts. All accounts that send a great number of messages through the server mail.usi.ch will be automatically suspended. Please contact in advance firstname.lastname@example.org if you need to send a high number of messages through the server mail.usi.ch.