快活林性息

It can be very tricky to identify a phishing scam, but here are some common traits:听听

• Asks for听sensitive information听(e.g. click here to verify your username and password)
• Asks you to download something听(e.g. click here to get the necessary virus update file)
• Contains听spelling and/or grammatical errors听(e.g., thank you, from trusted administrator)
• Threatens you听(e.g. do this or else your account will be deleted)
• Contains听suspicious web addresses/URLs听(e.g. visit the 快活林性息 page by visiting: http:// www. csunorg31.com/account)
• Contains听unexpected/inaccurate content听(e.g. you've exceeded your email quota)
• Are generically addressed听(e.g. dear 快活林性息 customer)
• Expresses an urgency听(e.g. you must click here immediately to avoid having your account terminated)

For more information, visit the听快活林性息 Spam Prevention听page.听

View听Phishing Examples

Phishing emails typically follow a certain structure so here are some tips for you to use when sending your own emails:

• When possible,听use the proper salutation, such as 'Dear John' instead of 'Dear Employee'.听
• Do use the subject line.听Be sure to include a short, descriptive subject for your email. When sending an email that contains essential information regarding free services听do not听use "free" in the subject line, as it may appear suspicious.听 听
• Use the appropriate capitalization, punctuation and spelling. Emails or subject lines written in all caps, spelled incorrectly or lacking punctuation appear to be suspicious in nature. Avoid capitalized words other than 快活林性息.
• Refrain from using specialized formatting听such as non-standard fonts, sizes or colors.听
• Do not embed background graphics, logos or URLs. This embedded content is often used to propagate viruses and additional spam. If you need to point readers to a specific site, spell out the navigation as URLs can be hidden in other URLs. Example: Go to the 快活林性息 homepage > Select Inside 快活林性息, etc.听
• Attachments may appear suspicious. If possible avoid attaching documents; however if it is necessary make sure to add a clear description of the document.听
• Refrain听from using acronyms.听
• Provide a valid way to听verify听the email.
• Be sure to use your听official听快活林性息听email (either .csun.edu or .my.csun.edu).听

When reporting a phishing or spam email to听abuse@csun.edu,听Information Technology will ask you to send the email as an attachment. Sending the email as an attachment allows Information Technology the ability to see full email headers, providing all the information needed to investigate the email. If you need instructions on how to send the email as an attachment, visit the听How to Forward an Email as an Attachment听page.听

If you learn of an active phishing website that is not already warning users, notify the three main browsers that it is deceptive and should be blocked. When a site is reported as deceptive the browser will display a warning before showing the page.

Visit听How to Report Phishing Websites

Ransomware听is a type of malware that prevents or limits users from accessing their system, either by locking the system's screen or by locking the users' files unless a ransom is paid. More modern ransomware families, collectively categorized as crypto-ransomware, encrypt certain file types on infected systems and forces users to pay the ransom through certain online payment methods to get a decrypt key. Visit the听Ransomware听page for more information.听

Spear phishing is another form of phishing that targets specific people, threat actors target organizations and companies in an attempt to retrieve sensitive information. Threat actors have utilized social engineering as their main tool to get the user to allow them to view sensitive information. For more information, visit听Spear Phishing.听

Watch this Ninjio video about a spear fishing attack -听.

听