Don’t take the bait: Phishing awareness for everyone

03/03/26

Phishing continues to be one of the most common and successful cyberattacks affecting universities and organizations everywhere. Students, faculty, and staff are frequently targeted by emails, text messages, and even phone calls designed to trick them into sharing passwords, personal information, or financial details.

Cybercriminals rely on urgency and curiosity. They may send messages that look like they come from a trusted source, such as a supervisor, professor, bank, delivery service, or campus office. They may ask you to click a link, open an attachment, or respond quickly. These messages often create a sense of urgency, claiming your account will be locked, you’ve received an unexpected payment, or immediate action is required.

Taking a moment to pause and review a message carefully can prevent a costly mistake.

Common signs of phishing

Phishing messages often include subtle warning signs. Be cautious if you notice:

Unexpected requests for passwords, verification codes, or personal information
Messages creating urgency or pressure to act immediately
Links that don’t match the sender or seem unusual
Attachments you weren’t expecting
Generic greetings or unusual tone

If something feels off, trust your instincts and take a closer look before clicking.

Why reporting phishing matters

If you receive a suspicious email, do not ignore it — report it. Reporting helps the IT Solutions teams identify active phishing campaigns and protect others in the community. One reported message can lead to blocking a malicious sender, removing harmful emails from inboxes across campus, and preventing additional accounts from being compromised.

Even if you’re not sure whether a message is phishing, reporting it allows security teams to investigate and take appropriate action.

How to report a suspicious message

Reporting phishing is quick and easy. Use the “Report Suspicious” or “Report Phishing” button in Microsoft Outlook and Gmail.

If you ever click a suspicious link or provide information by mistake, report it immediately. Quick reporting allows ITS teams to respond and help secure your account.

Stay alert and think before you click

Phishing attacks continue to evolve, but a strong culture of awareness is one of the best defenses. By staying alert, thinking before clicking, and reporting suspicious messages, every member of our community plays an important role in keeping our systems and information safe.

When it comes to phishing, remember:

Stop. Think. Report.
Thank you for doing your part to protect our campus community.

ADA Title II rule ushers new era of digital accessibility 01/21/26

Welcome Back from IT Solutions 01/21/26

Classroom support for faculty 01/21/26

File sharing with OneDrive 01/21/26

Coming soon: expanded phishing awareness campaigns 01/21/26