skip to content

IT Help and Support

University Information Services
 

'Phishing' is where a scammer attempts to use social engineering techniques to encourage you to disclose personal information, account login details or financial information. They then use it as part of other scams.

Watch our short videos on our MyCompliance platform:

What is Phishing and how do I recognise it (3:45)

Learn more about Phishing (11:43)

 

Financial fraud and spear phishing

Spear phishing is similar to phishing. It also using social engineering techniques to trick you into disclosing personal or financial information. The main difference is that this is a highly targeted type of attack. The scammers will use various sources of information, including institutional and club/society web pages, to find out details of the people involved in running an organisation. They attempt to impersonate people you know and use any available information about the ways you work to make their scam appear legitimate.
 

How to spot fakes

Checking the sender's address might help you to spot fakes. For example, there are very few '@cam' email addresses that identify roles rather than individuals – like 'human-resources@cam.ac.uk', which, by the way, doesn't exist! There's a (staff access-only) list of them here. Remember that any email address can be spoofed, so even if it shows as being 'From' one of these addresses or an address you recognise, exercise the usual caution if the content looks suspicious to you.
Forward scam emails to spam@uis.cam.ac.uk

What to do if you think you've been phished

Speak to your local Computer Office or contact the UIS Service Desk if you receive a suspicious email and want advice. If you think you may have accidentally disclosed your login details for any website or service, change them immediately to secure your accounts. For UIS accounts, you can do this at the UIS Password Management page. Similarly, if you think you may have disclosed financial information such as bank account, debit or credit card details, contact your bank as soon as possible.

 

Top tips

DoTick

Don'tCross

Do treat any links in email with caution. Hovering your mouse over the link can reveal the scammer's fake link. Also, look to see if the address in your browser's title bar is different to the one you expect.

 

Don't open attachments from unsolicited messages.

 

Do call the sender if you receive a message that invites you to 'validate your password' or 'reactivate' your account, to find out if the request is genuine. Use a trusted phone number obtained from a genuine web site.

UIS and financial service providers would never ask you to do these things via an email.

Don't enter your login details, personal information or financial information into any site that arouses your suspicions.
Do ensure you have up-to-date anti-virus software installed and working on your PCs.

Don't assume that anti-virus software will always scan and detect viruses or malware in malicious links or in an email attachment.

Do be particularly vigilant if you are asked to change a payee's bank details for money transfers. Don't hesitate to ask your local Computer Officer or the UIS Service Desk if you are suspicious about the contents of a message.

 

 

UIS Service Desk

Phone padded  Service status line: (01223 7)67999
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin

A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >

Latest news

DS-Print: Common Balance temporarily enabled with £20 overdraft

3 October 2022

On 28 September, we withdrew eCredit for DS-Print whilst we investigated reports of users being unable to access the eCredit web portal to purchase Common Balance print credit. As a temporary measure, while a fix is implemented for eCredit in order to resolve these issues, we have enabled all users with a £20 overdraft on...

macOS Ventura release

30 September 2022

Apple will soon be releasing macOS Ventura. Following its release, they will drop support for macOS Catalina (10.15). All users running macOS Catalina are encouraged to upgrade to one of the following supported operating systems: macOS Ventura (when released) macOS 12 Monterey (compatible computers: https://support.apple...

Change to display names in Lookup from 06 October 

30 September 2022

What is happening From 06 October, UIS will be updating the Display name records in Lookup to use people’s Preferred first name initials. This supports a user-friendly move toward using everyone’s preferred names, rather than their Registered name. If you have personally set your own Display name in Lookup, you will not be...