Staying Safe when using Email
Email is one of the most common routes for virus infection, malware, spam and other forms of malicious attacks.
The University is helping protect you against threats via email by:
You can also follow the advice on the page to protect you against email attacks.
Please note: we will take action to protect the University network if an individual's machine or account is compromised, for example we may need to disable the individual's account.
Staying Safe using Email Frequently Asked Questions
What is a phishing email?
How can I recognise a phishing email?
How do I protect myself from phishing emails, spam and other scams?
Where can I find out more?
Q: What is a phishing email?
A: A phishing email is an email asking you to disclose personal information such your passwords or bank details.
Please be aware that Information Services will NOT ask for usernames and passwords or to re-validate your account through an email. If you receive an email asking for this information, delete it.
Q: How can I recognise a phishing email?
A: Fraudulent emails are not normally addressed to you personally. All the fraudsters know is your email address.
It may be addressed to 'Dear Valued Customer' or something equally vague.
Legitimate companies will NEVER ask you to update any information by email. Find out more about how to spot a phish.
Q: How do I protect myself from phishing emails, spam and other scams?
A: Follow the guidance below:
- Give out your username or password to anyone.
- Click on links that ask you to give account details.
- Reply to any email you suspect is a scam or phishing attempt.
- Follow the guidance on how to protect yourself from viruses.
- Ignore any emails that offer financial gain by transferring funds.
- Ignore emails that appear suspicious or contain spelling and grammatical mistakes.
- Read the claims made by the email carefully - if they seem too good to be true, they often are!
- Ask if in any doubt - if an email seems to be from your bank or another familiar company it’s safer to contact them to confirm they sent the email, before submitting any details.
- Type in a website address manually, rather than clicking links contained in an email.
- Forward the message to Abuse@frontbridge.com - they maintain the generic list of junk senders (do not forward the message to IS Service Desk )
- Delete the email.
- Protect your password.
Q: Where can I find out more?
A: You may find the information on the following websites useful:
The Financial Fraud Action UK website provides useful advice about online banking and how to avoid or report internet banking scams.
The Anti-Phishing Working Group (APWG) website provides instructions on how to report instances of phishing, pharming and spoofing.
The Microsoft Safety and Security Center offers further guidance on dealing with suspicious emails.
The following document describes how you can set up rules in Outlook to deal with junk email:
Dealing with Junk Email
For information about Email Encryption go to the Email Encryption Intranet page.