Skip to main content

Information Security

Cyber Awareness Items

Phishing

Don't Get Caught!

"Phishing" is when a criminal tries to get you to reveal your username and password by sending you a legitimate looking email. Sometimes they may ask for even more personal information such as your address or social security number. You should always be wary of messages that asks for your personal information or messages that refer you to a web page asking for these details.

Messages or websites phishing for information might ask you to enter the following information:

  • Usernames and Passwords
  • Social Security number
  • Bank account numbers
  • PINs (Personal Identification Numbers)
  • Full credit card numbers
  • Your mother’s maiden name
  • Your birthday

NEVER respond to any of these messages, no matter how realistic they might appear.
If you respond with the information, then your computer or accounts may be compromised and be used to do harmful things to you or other people.

If you think you have responded to a phishing message:
Students, faculty, and staff, please call Technology Help Desk x5700 (408-554-5700) or visit the Technology Help Desk on the first floor of the Learning Commons.

Santa Clara University Information Services will never ask for your ID or Password in an anonymous email.

Look for phishing examples here

Social Engineering

Social engineering attacks are special phishing attacks tailored to their targets. A scammer might collect information about you from a variety of sources like your LinkedIn or Facebook accounts so that they can use details they collect to pretend to be someone you trust, like your boss or a family member. Social engineering attacks are often leveled at employees of a target organization to gain access to its systems or at individuals to gain their sensitive information.