sheridan
IT Services
Information Security

Phishing Messages – Don't Get Hooked

fishing hook grabbing credit card[updated Jan. 31, 2017] IT would like to take this opportunity to remind users to be vigilant of the email messages that land in their inbox – especially those messages that ask you to divulge personal information. These messages are examples of phishing attacks. Phishing attacks use spoofed emails and fake web sites to fool the recipients into divulging personal information such as user names and passwords, credit card numbers, social insurance numbers, etc.

Phishing attacks come in many forms and most often try to spoof services that you’re likely familiar with to give you a false sense of security. These can include:

First and foremost you should know that Sheridan will NEVER send you an email asking you to divulge account details, or with links asking you to log into your account. The easiest way to protect yourself is to never respond to anyone who asks for personal information by email, even it is from a seemingly legitimate source.

Be suspicious of any email that:

Phishing Examples

Below are several recent examples of phishing messages that have been making the rounds. Note that each of these messages contain several clues (highlighted in red) that should alert users to the fact that they are not from legitamate sources.

Banks have a pretty good handle on who their customers are and won't typically greet you using your email address.

Royal Bank Phishing Example

An email without a subject line is a good cue that something is phishy.

Do you have an Apple account registered to your business email address?

Apple Phishing Example

Do you have a Salesforce account?

salesforce phishing example

Are you expecting an electronic fax from someone?

efax phishing example

Sheridan will NEVER send you this kind of email!

Staff Phishing Example

Do you have a Skype account?

Skype Phishing Example

skype phishing example #2

Why would Apple send you an email message that links to a message?

iTunes Phishing example

Apple Phishing example

Really, when was the last time the government found some money for you?

Canada Revenue Phishing example

Do you have a Desjardins account registered to your business email address?

Desjardins Phishing example

Do you have an Amazon account registered to your business email address?

amazon phishing example

 


"I Think I’ve Been Hooked!"

If you happened to get ‘hooked’ by one of these messages, you should change your password immediately and contact Information Security.

Don't Take a Chance, Ask the Experts

When in doubt contact servicedesk@sheridancollege.ca for a second opinion.