• IT Home
  • Purpose & Values
  • Technology Plan
  • Org Chart
  • Departments
  • Services
  • AVP/CIO
• Blackboard
  • COMING SOON: Blackboard 7.3
  • Courses/Training
  • Documentation
  • Getting Started
  • Go To Blackboard
  • Help
  • Logging In
  • Module Request
  • Organization Requests
  • Password Reset
  • Plagiarism
  • Reporting a Problem
• E-mail
  • Aliases
  • CIS Unix
  • Directed Communication
  • Directories
  • Getting An Account
  • Mailing Lists
  • Outlook Exchange
  • Outlook Web Access
  • Privacy
  • Webmail
• Equipment
  • Audiovisual Repairs
  • Blackberry
  • Classrooms
  • Computer Service Center
  • Dispose/Surplus
  • Phones
  • Public Computing Clusters
  • Reservations
  • UNH Computer Store
  • Video Conferencing
• Network
  • Custom Secure Networks
  • Internet
  • On Campus
  • Security
  • Videoconferencing
  • Wide Area (NH)
  • WiFi Wireless
• Software
  • Download Software
  • Help
  • Supported Software
  • Training
  • UNH Computer Store
  • Virus Protection
  • VPN
• Support
  • Accounts
  • Audiovisual
  • Banner
  • Blackboard
  • Business Service Center
  • CIS Help Desk
  • Computer Service Center
  • Document Imaging
  • Help Form
  • New Technologies At UNH
  • Photography
  • Ruckus at UNH
  • Training
  • Video Production
  • Web Pages
  • WEBI
  • Windows Update
• Telephones
  • Authorization Codes
  • Directories
  • Making Calls at UNH
  • Repair
  • Services & Rates
  • Telecom Account Access
  • Telecom Account Manager
  • Voicemail

UNH IT Phishing Information

How to Spot Phishing from Outside UNH:

Question EVERYTHING!

• Question the Tone:
  Phishing E-mails often have a threatening tone. If you are a client of a company, remember that a company’s customer service department is meant to serve you. No company should threaten you.
  
  
• Question the Deadline:
  Phishing E-mails often have a strict deadline, which, if not met, will result in the suspension or deletion of an account.
  
  
• Question the Reasoning:
  If you are using a paid service, why would the company threaten to close your account permanently? Companies want to make money, so why would they restrict you from ever spending money with them again?
  
  
• Question the Company:
  Do you own an account with the group contacting you? If you don’t have a Citizen’s bank account, why would they ask you to send them your information?
  
  
• Check All Links in the E-mail:
  Hovering over a link will display the address, either in a bubble near the link or at the bottom of the web browser. Links that point to IP addresses (in the form 209.202.224.140) are suspicious. If you’re being asked to verify your Chase bank account, the link should point to chase.com. Be wary of links that alter the site’s address a bit, such as https://www3.chase.com/ccp/clientconfirm.jsp/?sid=25sdbdltvedseDbcjydOvrwOdlv. This address should look bizarre to you. Can you get to www3.chase.com? Shouldn’t that link point to www.chase.com?
  
  When hovering over this link, it points to http://ww2.chase.com.bank84.com/ccp/clientconfirm.jsp/?cookie=25sdbdltvedseDbcjydOvrwOdlv. Why would Chase lie to you about where they’re asking you to go? What is ww2.chase.com.bank84.com? Why is this so complicated? If it seems “phishy” it probably is.
  
  
• Examine the Header:
  Examine the logo, if any, at the top of the E-mail. Was it just pasted in? Does it look legitimate? Are the colors the same as the logo on the real site? (Legitimate looking logos do NOT ensure a legitimate E-mail.)
  
  
• Question the Recipients:
  If your account needs to be verified, why would the E-mail be sent to “<undisclosed-recipients:>”? Shouldn’t you be the only person getting this message? Why would the E-mail be sent to a group of colleagues, or a list of students in an on-campus group?
  
  
• Question the Sender:
  If you get four E-mails from “Cash Tranferz” promising to make you money or offering you a great job, wouldn’t you expect their E-mails to come from the same place?

There is something “phishy” about the E-mails coming from four unrelated companies:

• @bjsat.gov.cn
• @ahlersindia.com
• @gzkequan.com
• @keysusoft.com

If all else fails, follow the trail. Go to bjstat.gov.cn or keysusoft.com. Do you know these companies?

• Question the Grammar and Spelling:
  Corporations have departments dedicated to communications. Any E-mail with grammar or spelling mistakes should be considered potentially phishing. It is common for phishing E-mails to be written by people who do not natively speak English, leaving the E-mail to sound disjointed and awkward. For example:

  Our Technical Division is doing a scheduled Treasury Service update

  By following the link below please open the procedure of the customer certificate approval:

  https://connect0.colonialbank.com/NBB/?poolid=25sdbdltvedseDbcjydOvrwOdlv

  These instructions are to be sent and followed by all members of the Commercial Online Banking.

  ColonialBank Group does apologize for any troubles caused, and is very grateful for your collaboration.

No company would release an E-mail such as this.

• Question the Subject Line:

  • ColonialBank Cash Management Banking Service – Spelling Error
  • Get freedom from debts. Ref: 700 – Claims to get you out of debt are often phishing – remember that you’ll have to supply information such as your Social Security Number and banking information. Phishing regarding debt is especially dangerous, as it may deal with people who are desperate to get rid of the problem. Irrational thinking aides the phishers in coning the recipients.
    
    
• Verify the Request:
  Call the corporation whose name is being used to request the information. DO NOT use a phone number listed in the E-mail or on any site linked to the E-mail. Go to google.com, search for the company, and find their support page. Most companies will have a support phone line.
  
  
• Report the Phishing Attempt:
  If you are clever and recognize an E-mail as phishing, report the attempt to your E-mail provider and to the corporation whose name is being used.