Practicalities for the USI community

Phishing

Phishing is an online fraud designed to steal passwords and credit card numbers and personal account information.

Phishing messages are usually an invitation to confirm an e-mail address, or fake invoices, payment requests of orders that were never placed. They usually show a link that looks legitimate and well known and they ask to enter personal data.

The administrator of a computer service will never need your password to solve a problem. Any message that asks for a password is a trap.

 

How can I recognise phishing

  • It is written in English.
  • It is written in Italian with grammar and syntax errors.
  • It asks for your credentials or it directs you to a site that asks for your credentials.
  • The answer must be sent to an address outside of usi.ch.
  • It contains a generic message and requests personal information for non-specified reasons (deadline, loss of something, technical problems).
  • It is intimidating. It threatens to shut down the account if an answer is not provided.
  • It does not show a deadline for the information requested.
  • It is sent from a strange or unknown address.
  • It makes you believe that you are clicking on a usi.ch link but you are directed to another site.

 

A phishing example

From: USI Webmail [mailto:senderteams@savba.sk] 
Sent: lunedì, 22. dicembre 2014 12:35
To: Me
Subject: e-mail security alert

There was something unusual about a recent sign-in for your mail account. Please review your recent activity and we will help you take corrective measures.

Review recent activities

Regards
Università della Svizzera italian

 

What shall I do if I receive phishing?

  1. Delete the message and do not answer!
  2. Never follow the links!

 

What if I have already replied to the message or followed the link?

If you did it from your USI account, change the password right away through webmail (www.mail.usi.ch): enter your mailbox, click on Options (upper right) and choose Change password..

  • Notify the Help Desk at sistema.lu@usi.ch or by calling +41 58 666 46 10.
  • If it happened from another mail account, contact the administrator of the service directly and notify about the problem.

Why are hackers interested in USI accounts?

In most cases, the hackers have used hacked mail boxes to send new phishing from our mail server. Illegal activities are therefore carried out in the name of the user, who could also lose all the messages in the box, receive SPAM and be blocked by other users.

In the meantime, the USI mail system could gain a bad reputation, be blocked by other Institutes as SPAM, and legitimate messages will not be delivered. 

It might take weeks to get out of the situation and in some cases, a payment of a fee is required,

To mitigate the problem we keep people informed and we block the hacked accounts. All accounts that send a great number of messages through the server mail.usi.ch will be automatically suspended. Please contact in advance sistema.lu@usi.ch if you need to send a high number of messages through the server mail.usi.ch.  

 

 

Faculties

Targets

Tags

Updated on: 09/07/2019