Click to enlarge

This message did not originate with any group at KU and should be regarded as fraudulent.

While this is a new phishing message, all phishing messages have a few features in common:

1. They will use scare tactics or threats to get you to reply before you’ve had a chance to think. “Your account will be suspended.” “We must determine your continued eligibility.” “If we do not hear back from you, all of your e-mail will be deleted.”
2. They may “borrow” graphics, language, or names to look more real. Many phishing messages purport to come from the “KU Help Desk” or “E-Mail Team.” Some go to the trouble of downloading graphics from a legitimate business’ website and using fancy formatting to look more real.
3. They may use poor English. Savvy bad guys have gotten the message and have begun using native English speakers to draft their messages.
4. They will always ask for information the business already has. Your bank does not need to “validate” your account number. KU will never ask you to verify your eligibility for an e-mail account.
5. Phishing messages won’t always occur over e-mail. They may arrive via text message, voicemail, or even snail mail!

Phishing messages tend to ask for valuable bits of data like passwords, bank account numbers, Social Security Numbers, or other types of sensitive data. If you receive a message asking for information, STOP and THINK:

1. Should this organization already have the information this message is requesting?
2. Have I ever done business with this company?
3. Am I expecting to hear from this organization about my account?
4. Does this just feel “off” somehow?

Depending on your answers to those questions, it is probably best that you contact the organization in question. This may even mean that you hang up on a caller and say “I will call you back, I want to double-check something.” Use a known-good phone number to verify the message. What is “known-good?” For your bank, it would be the number on the back of your credit card or a number printed on your statement. For the KU Customer Service Center, it is 864-8080. A “known-good” number is NEVER a number left on your answering machine, sent to you in an e-mail, or left on your mobile phone in a text message.

Sometimes, phishing messages ask you to reply with information in the body of an e-mail. Other times, they may ask you to click on a link and fill out a form with the requested information. Even if the link looks legitimate, DO NOT CLICK IT! Remember: “When in doubt, type it out.”

So you got a phishing message and you didn’t respond. What next? Report it! If it arrived in your KU e-mail account, send it as an attachment to abuse@ku.edu. Never respond to a phishing message, not even to say “take me off your list.” This lets the fraudsters know they’ve got a human on the other end of that address. Replying will only serve to increase the amount of spam you get.

If you responded to a phishing message, don’t panic. Your first step should be to call the KU Customer Service Center at (785)864-8080. They can help you reset your password and regain control over your e-mail account. Questions about your KU Online ID and phishing should always be directed to the KU Customer Service Center at (785)864-8080 or itcsc@ku.edu.

Want to know more about staying safe online? Become a fan of Be SeKUre on Facebook at http://www.facebook.com/BeSeKUre or sign up for a free cybersecurity workshop at http://www.infotraining.ku.edu.