Phishing refers to phone or email scams made by fraudulent parties, that attempt to trick you into divulging personal information such as
- Credit card numbers
- Bank account information.
Phishing attacks can come in the form of a phone call or email message. They claim and are made to look like they are from organizations with whom you have a legitimate business relationship.
How do I avoid phishing scams?
- Be suspicious of ANY email that asks you to provide personal information by replying to the message or clicking a link.
- Be suspicious if:
- The sender is unknown (and be aware that the scammers can make the email to appear to be from a trusted source)
- The email is not expected
- Anything seems out of the ordinary, like format, grammar or reply-to address.
- Remember that neither MSU nor any reputable company will EVER ask for a username or password vial email.
- When in doubt, ask for help before you act. Contact the UIT Service Desk at 406-994-1777 and ask them to take a look or contact the company who purportedly sent the message as you would normally to verify the message's content.
I received a phishing email. Now what?
- If you receive a phishing message, forward it to firstname.lastname@example.org and then delete it promptly.
- If you believe that you have given away your private information to a phishing scam, immediately report it to the organization that appears to have sent the email.
- If you think you might have responded to a phishing scam with your MSU username and password, immediately change your password and notify the UIT ServiceDesk at 994-1777.
Visit Stay Safe Online's Spam and Phishing section for more information on how to stay safe online and protect your personal information.