University of Minnesota Extension www.extension.umn.edu 612-624-1222

Extension > Extension Retiree Newsletter > How to be phish-proof

Print Icon Email Icon Share Icon

Tuesday, July 7, 2015

How to be phish-proof

A recent cybersecurity “phishing” incident may have exposed the personal information of current and former Federal employees. The U.S. Office of Personnel Management (OPM) has been sending email notifications to those potentially impacted. Email notices will be sent from opmcio@csid.com about services being provided at no cost to individuals impacted by the incident, including credit report access, credit monitoring, identity theft insurance and recovery services. Additional information is available at www.csid.com/opm.

Phishing is the attempt to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Here are four steps to protect yourself:
  1. Check the grammar. A lot of phishing emails are written to try to sound professional and official, but make sloppy grammatical mistakes.
  2. Check the sender. Modern phishing emails are often from someone you know (because that person responded to a phishing email with their ID and password). But would you expect the person to email you about the subject of the email?
  3. Don’t be fooled by the official look. Scammers can cut and paste copyright statements, logos, etc.
  4. Hover over the link. The phishing email may provide a link to reset your password, etc. If you hover your mouse (don't click!) over any link in your email, you should see (usually at the bottom of the window) where the link is going to take you.
  • © Regents of the University of Minnesota. All rights reserved.
  • The University of Minnesota is an equal opportunity educator and employer. Privacy