Phishing Information

If you were redirected to this page you may have clicked on a simulated phishing email prepared by the UM Technology Department.

This exercise aims to help staff recognize malicious emails and prevent data loss or exfiltration.

Please take a moment to review these tips for identifying potentially harmful emails:

1. Verify the sender's name and email address:

Phishing emails often impersonate someone you know. Double-check that the email address and domain match what you expect. Even if the address appears correct, their account may be compromised. If you're ever unsure, contact the Technology Department.

 

2. Inspect URLs before clicking:

Scammers often disguise links to look like they come from trusted sources, like Google. Hover over links to see if the URL matches. If it doesn’t, it's a red flag.

 

3. Be cautious with external emails:

Emails from outside the organization will display a banner. Scammers often impersonate familiar contacts and claim they're using a personal email for various reasons. If you see this banner, take a moment to verify the email’s legitimacy.

 

4. Report suspicious emails:

If you suspect an email is phishing, use Gmail's report feature or learn more here.