Like so many of our peer institutions, Tufts continues to be the target of multiple phishing schemes. Please remain vigilant!
Phishing can take to form of hoaxes, fraudulent email or websites designed to appear as legitimate offers or services. The creators and originators attempt to get you to submit personal information that can then be used to empty bank accounts, max-out credit cards and even assume your identity.
Avoiding the Hook
With phishing schemes that look this legitimate, how do you avoid getting filleted? Beware of e-mails and websites that:
- Ask you to provide personal information such as your bank account number, an account password, credit card number, PIN number, mother’s maiden name, or Social Security number.
- Fail to address you by your name using a generic “Dear Customer” or your email address in the salutation.
- Fail to confirm the company does business with you, such as referencing a partial account number.
- Warn that your account will be shut down unless you reconfirm your financial information.
- Warn that you have been the victim of fraud.
- Have spelling or grammatical errors.
Remember: No Tufts IT support professional will ever ask you to verify your email account by clicking a link in an email, nor will they ask for your user name, password, or other personal data in an email.