We would like to make you aware of a recent email phishing campaign targeting ANU staff and seemingly come from senior office holders including members of the ANU executive. These emails ask recipients to respond to a “are you free?” message or seek the recipient’s help in procuring iTunes gift cards. These emails are fraudulent and should be reported to IT.firstname.lastname@example.org.
Phishing and scam emails is the most common means of getting users to unwittingly share sensitive details such as credit card information, login credentials or gain information for future cyber-attacks.
ANU continues to invest in cybersecurity and our network has a number of security measures in place, however our first line of defence is you. By using some readily applied measures you will be able to identify phishing emails and remain safe online.
- Even if an emails seems to come from a person or organisation you know check to make sure it originates from an @anu.edu.au email address. This may not be immediately apparent on mobile devices so it is prudent to expand the “from” field. Phishing attempts can use similar email addresses like “@anu.ed.au” to take advantage of users skim reading.
- Treat requests to do something unusual or out of character by the recipient as suspicious and validate the request in person. More sophisticated phishing emails may include a degree of personalisation or familiarity designed to trick you into responding.
- Do not click on any embedded link or attachment in an email unless you are sure of its origin.
- Never provide bank account, credit card, login credentials or credit card details by email – this is strongly recommended even for legitimate communications.
- Unless you have validated the source of the email do not give out personally identifiable information including photos.
Thank you for helping to keep our network and our people safe from these constant cyber-threats. And should you have any questions please feel free to contact IT.email@example.com