With 2024 officially underway, many of you are already working on your New Year’s resolutions. But have you considered adding a cyber security goal to your list?
Phishing is a cyber threat designed to trick you into revealing sensitive information or deploy malicious software and it’s one of the most common and dangerous scams the university faces. With the number and sophistication of email, text, and voicemail phishing attacks expected to increase significantly in 2024, here are some steps you can take to protect yourself:
- Know your sender–Don’t open attachments or click links in email from unknown senders. Look at the sender’s email, not just their name. Is there anything wrong with the email—perhaps a misspelling or a random number in place of a letter?
- Know your content–Hover over links to verify the URL. Don’t download or open attachments unless you trust the sender.
- Keep Your Information Private–Never provide your Northeastern credentials over email. Be especially suspicious of emails asking for sensitive or personal information.
- Know the Signs–Familiarize yourself with common phishing techniques and red flags.
How to report suspicious emails
If you suspect a phishing email or want to verify its legitimacy:
- Visit the Phish Bowl at Northeastern, a resource that can help you identify phishing attempts that have been reported or caught.
- Forward the suspected message to phishcatcher@northeastern.edu.
- Detailed instructions on how to report a phishing email are available in the knowledge base.