These types of emails try to steal your account details. They may appear to be from people or organisations you know.

They may contain links to fake websites that look official and ask you to provide personal or valuable data such as your IT account password, bank details or payment card information. They may tempt you by stating you have won something. The rule is, if it looks too good to be true, IGNORE IT. Remember UEA will NEVER ask you for your password in emails or over the phone.

How to spot some obvious phishing email behaviour

  • Some phishing emails display more obvious mistakes or characteristics:
  • Generic greetings (Dear customer) rather than specific to the individual
  • Poor Spelling and grammatical errors
  • Request for passwords, PINs, personal information (Date of Birth, Address, social security numbers or passport details)
  • Any offer seems to be ‘too good to be true’
  • Unexpected delivery notes, workplace issues (including password expiry advisories, account updates and information claiming to be from HR, technical issues).
  • Subject matter tends to prey on the individuals, curiosity, fear (your account has been compromised or suspicious activity has been noticed) or sense of urgency (account to be closed if you don’t respond within 24 hours etc.)
  • Have an attachment which the email wants you to open (delivery note, invoice etc.) or a link it wants you to click

What to do with them

  • If you have not responded or clicked a link/opened an attachment – simply delete them
  • If the suspect email seems particularly targeted against you – report it to the information security team as it may indicate a targeted attack
  • Never reply to any email asking for your passwords, PINs or other account details.
  • Don't open attachments unless you completely trust where they have come from.
  • If in doubt contact the organisation the email is reportedly being sent from, using a trusted phone number. Obtain these numbers by going to either the official web page of the organisation or from any documentation previously received. The majority of organisations will be prepared for these types of calls due to the rise in phishing and public concern of identity theft.

What to do if you responded to them (replied or clicked a link)

  • Change your password immediately
  • Report it to the ITCS Service Desk giving as much detail as possible, including the suspect email. This will help ITCS take action hopefully to prevent others within the University falling victim to the same phishing attack.
  • If you think you may have compromised the safety of your bank details and/or have lost money due to fraudulent misuse of your cards, you should immediately contact your bank, and report it to Action Fraud.