Oregon State University


What is phishing?

Phishing is an attempt by a person or organization to gain information such as usernames, passwords or credit card information. Once the unauthorized person gathers this information, they can use it to fraudulently purchase items on YOUR credit card, send real or spam e-mail from YOUR e-mail address, or sign up for services in YOUR name. Examples of phishing messages have been compiled to help you identify fake messages. The Phishing page on Wikipedia has more information if you are interested.

Why is phishing dangerous?

Aside from financial loss, phishing can also cost you time, as well as your identity. As said above, once you send your information to a phishing email, someone can start making charges to your name. Not only will you now owe for someone's else's expenditures, you also get to spend hours trying to cancel cards, reverse orders, and try to get your financial life back. This can be very taxing financially, and take a lot of your spare time.

You will also now have a flood of messages from services you've never used before. Accounts for forums, online retailers, lists, just about anything, can start being funneled to your email address. What's worse, the phisher can also spoof your account, and potentially get your account disabled for spamming.

What can I do to protect my personal identity and information?

  • NEVER give your password to ANYONE, including technical support personnel.
  • NEVER respond to spam messages (this validates your address to the spammer and your e-mail address will be FLOODED with SPAM).
  • Read the email critically and ask yourself some questions.
    • Does it make sense?
    • Is the capitalization, grammar, punctuation and sentence structure, correct?
    • Is the email too generic?
    • Why are they asking for my personally identifiable information over an unsecure method of communication, such as e-mail?
    • Why would the administrators of that system need my username, which they already know?
  • Never respond to an email requesting this information.
  • Forward suspicious emails to your support group or call the agency requesting the information; E.g. Bank of America, OSU Federal Credit Union, Computer Helpdesk, etc.
  • Never click on links or images in suspicious emails.
  • Abide by the OSU Acceptable Use Policy you signed, especially the section: "Accounts and passwords may not, under any circumstances, be shared with or used by persons other than the individual(s) to whom they have been assigned by the University."
  • Don't chat up scammers. Read a transcript from a real scam artist to gain further insight.
  • If you are still unsure what to do, contact your computer support group on campus.

What can I do to report a phishing attempt?

If you receive a phishing attempt and would like to report it, please select your email client from the following list for instructions on reporting a phishing attempt.

What happens if I get phished?

If you are the victim of a phishing attempt, the first thing that will happen is your account will get disabled by the Service Desk. Once your account is disabled, you will get an email to your personal email telling you why your account was disabled; both you and the phisher will get an error message when you try to sign in telling you to contact the Oregon State Computer Helpdesk at 541-737-3474.

Once you call, the Service Desk will contact ONID support and get your account reactivated.

Things to keep in mind after getting your account reactivated:

  • Your password will need to be changed to something completely different
  • Check the Accounts, Filters, and Forwarding and POP/IMAP tabs and remove any fraudulent information. 
  • You can always contact the Service Desk if you don't know if an email is legitimate

Need help?

Contact the Service Desk at 541-737-8787

We want your feedback!

Helpdocs are made just for you, so please tell us how we can make this information more clear and accessible. The more feedback that you can provide, the more we can improve our services to you!

Contact Info

Copyright ©  2017 Oregon State University