Phishing emails

...have been aptly described as "A wolf in sheep's clothing - by email"

What is phishing?

Phishing (pronounced 'fishing') is a con trick used by criminals to get hold of your personal information via fraudulent emails. [they have also been known to use phone contact]

How does it work?

An email is sent to a large number of people in the hope that some of them will be duped into supplying personal information, such as the password for your RHUL computer account.

What do the emails look like / What do they ask for?

These phishing attacks will typically encourage victims to enter details on a fake website - which often seems to come from a legitimate organisation.

Look out for phishing emails that contain...**

• Casual or informal wording that's not in the normal style of an email from a legitimate company
• Familiar language or tone but poor grammar and spelling
• 'Verify your account' request -we will never ask you for your RHUL password.
• 'There is a secure message waiting for you' - these messages work by putting the emphasis on reading a message - not your actual account. However, the link in the email will still ask for your personal account details
• 'If you don't respond within 48 hours, your account will be closed' - such messages convey a sense of urgency that can make you respond immediately without thinking. Phishing emails might even claim that your response is required because your account may have been compromised
• 'Click the link below to gain access to your account' - sophisticated email messages can contain links or forms that you may fill out just as you would do on a legitimate website
• 'Dear Valued Customer' - phishing emails are usually sent out in bulk and often do not contain your first name or surname

**this list is based on a useful summary found on the Natwest website. We have received similar emails at RHUL.