Phishing emails: What They Are and What to Do

Follow

Phishing emails are sent to you by people or programs who are looking for access to accounts and password.They often appear to be from an administrator of the Email system, and threaten that your account may close if you don't use your account credentials to log into their website.

>> Common Phishing Emails Seen at Penn

Tips to help identify phishing attempts:

  • Wharton Computing will never ask you for your username/password via email.
  • Often phishing emails are poorly written and full of misspelled words.
  • Many phishing emails contain unusual looking links. One recent example contained the following sentence in the email:

           "Helpdesk requires you to upgrade webmail by Clicking http://mailverificationpage14.tk "

    Notice that there's no reference to Wharton, SPIKE, or Student Support in the URL, and the extension is not a standard one.
  • Even if a link looks legitimate, be cautious and consider the other tips listed above, never click on a link in a suspected phishing email.
  • When you click a link in an email pay close attention to the actual web address you've been sent to. If it looks suspicious do not enter your Wharton credentials.

What To Do

If you do click on the link, please change your Wharton account password immediately. In addition, if you have any other accounts that have the same or a similar password (for example, your Pennkey), you should also change those.

Article last updated:
Have more questions or want to report an error with this article?Submit a request