IT Security Alerts and Advisories 





Phishing for Passwords


There have been a number of recent email-based "phishing" attempts in which recipients are requested to provide their login credentials.  While many of these campaigns look obviously suspicious, some have been very carefully crafted so as to appear to be genuine.

Please be advised that IT Services will never request users to divulge their login information via email.  If you are the recipient of such an email request, please ignore it and delete it. 

If you suspect that you may have been a victim of such a phishing attempt, you should change your password immediately.

 For more information on phishing, see the following article entitled Anatomy of a Phishing Attempt.

Personal Information

Always be careful about where you post personally identifiable information (PII).

PII can include your:

 > Full Name 
 > Address 
 > Date of Birth 
> Social Insurance No.
> Credit Card No(s)

Malicious individuals are continually on the lookout for this type of information in order to steal your identity.

Places where you might post personal info include:

 
> "Profile Assistant" Programs
> Web Browsers
> Web Forms
> Facebook
> Twitter
> Email (unencrypted)

When it comes to revealing personal information, it’s best to keep a “low profile.” So remember:  Keep an eye on your PII.

Twitter Facebook Linkedin Flikr UFV on Google+ YouTube goUFV