**Please be advised, students, faculty, and staff are receiving emails that are malicious phishing attempts designed to steal NetID’s and passwords through a legitimate-looking email message**
Phishing is a term used to describe email messages that appear to be from a trusted entity, but are actually from someone attempting to trick you into divulging private information such as passwords and financial account numbers. These messages typically encourage you to click a link that takes you to a fraudulent website where you are asked to login and/or submit private information which is then captured by the scammer. These scammers can then use this information to commit identity theft, withdraw funds from your financial accounts, or access password-protected sites as you. Often, these messages look very legitimate. DO NOT PROCEED with the requests in these emails.
For more information about phishing, visit the Information Security Website at: www.uta.edu/security/phishing/
- DO NOT give your passwords and other sensitive information to an unverified party online, over the phone, or in person.
- DO NOT click any links contained in the message (see hint #6 below and the text in blue above)
- DO NOT open any attached files or shared documents.
- DO NOT provide personal information such as passwords in a reply to an email.
- DO NOT submit passwords through Google Forms.DO NOT violate policy.
- DO NOT respond to emails that require you to enter personal or financial information directly into the email
- DO NOT reply to emails asking you to send personal information
- DO NOT use your email address as your password
- DO NOT respond to emails threatening to close your account if you do not provide personal informa
Some Examples of Reported Phising Emails
What to look for in phishing emails
Some phishing attempts are easier to spot:
1. Unprofessional email title
Legitimate organizations do not typically use unprofessional formatting in the messages they send to clients.
2. Forged email address
The sender's email address may be forged, even if it looks legitimate. These addresses are suspect because the senders (a student email address, email@example.com, uta.edu) do not match the name used in the body of the message (IT Help Desk, or Microsoft Office Team).
3. Bad grammar and typos
Poorly written sentences, bad grammar, and misspelled words indicate that the email is probably a phishing scam.
4. Sense of urgency and account status threat
Phishing emails typically warn of a sudden change to an account and ask you to act immediately to verify your account.
5. Request for personal information
Be wary of any message that asks for your personal information — it is probably a phishing attempt.
6. Disguised or modified link
Even though a web address contains "uta.edu" it may not be a UTA website. When you hover your mouse over a link, the actual URL you are being directed to is displayed in a popup or at the bottom of your browser window. If the link in the email and the URL displayed are not identical, there is a possibility that you are being directed to a fraudulent site.