Skip Navigation
   
0
ANU Home | Helpdesk | Staff | Students | Library | OH&S | UniSafe
The Australian National University
Information Services@ANU
Division of Information
Home
Quick Help
InfoArticles
About Information Services
Filter: None
Services
Computing@ANU
Connecting
Email
Enterprise Systems
E-Publishing
Information Projects
Research Support
Security & Policies
Teaching
Training & Support
Printer Friendly Version

Information Services@ANU > :.....

:.....

Go to the Inside Information index page

.

What’s Phishing?

Phishing is a type of fraud that attempts to obtain personal and financial information, such as usernames and passwords, credit card or bank account numbers or other details, by pretending to be a trusted source.

Phishing schemes usually reach users through email, and often contain a link to a fake website designed to look like the real thing. Other variants rely on replies to the email, or even on phone calls.

How does it work?

Typically, a malicious user sends out millions of email messages claiming to come from popular websites. These messages, and the websites they direct you to, are usually designed to look as official and as close to the real thing as possible.

The email threatens consequences (account closure, improper charges, etc) if the user doesn’t “confirm” their details. When unsuspecting users enter information on the sites, or reply to the emails, their details are then used by criminals to steal money, purchase goods, or commit crimes using the real user’s identity.

More information on ANU IT security can be found at http://security.anu.edu.au or you can email it.security@anu.edu.au

Protecting yourself

Criminals continue to develop new ways to trick people. Following these steps can help to protect your information.

  1. Be suspicious! ANU will never ask you for your password or other details in an email. Similarly, Australian banks, and sites such as eBay or Paypal, will never send emails containing a link to login pages for accounts.
  2. Never respond to requests for information received via email, in a pop-up window, or by mail. If in doubt call the institution using their contact details listed in the phone book.
  3. Avoid links included in suspicious emails, as the sites may include viruses or other malware that could infect your computer. If you need to visit the site, type the URL into the address bar, or use a URL you have already bookmarked.
  4. Check for suspicious URLs. The site pretending to be paypal.com might actually be paypai.com or paypa1.com
  5. Websites that use encryption to securely transfer sensitive information will show a lock icon on the bottom-right of your browser window (NOT on the web page), and have addresses that begin with https:// rather than http://. To verify a site is authentic, double-click the lock icon to display the site’s security certificate, and check if the name on the certificate and in the address bar match — if they don’t then stop!
  6. Review your credit card and bank statements regularly.
  7. Report any suspicious mail or sites to it.security@anu.edu.au

.
.
.
.
.
.
.
.
.
.
.
.
.

foot01.

Please direct all enquiries to: Ask ANU
Page authorised by: Director, Corporate Information Services
The Australian National University — CRICOS Provider Number 00120C