Phishing Information

Phishing InformationPhishing Image

What is Phishing?

Phishing is a type of attack that attempts to steal usernames, passwords, personal identifiable information (PII) and other sensitive data.  Phishing attacks typically start as a message pretending to be from someone or about something you know.  These messages encourage you into taking action - clicking on a link, responding to the email,  opening an attachment or downloading an app.      Phishing is no longer confined to email;  text messages (otherwise known as smishing) and social media posts are often targets of phishing schemes. Phishing attacks account for 90% of cyber security breaches.

What is SPAM and is it different from Phishing emails?

Unsolicited emails that advertise products, goods or services can be considered 'Spam'.   These are non-malicious emails.  Spam messages are often sent to your Junk Email folder but sometimes show up in your Inbox.    If a Spam message shows up in your Inbox, simply right click on the message and choose  'Mark as junk' so that future emails from this sender are automatically routed to the Junk Email folder.  You should permanently delete all messages in your Junk Email folder.  

Phishing Warning Signs:

Passwords requests in an email

The Bait:

 

You receive an email or message that looks like it came from the Technology Department or your financial institution asking you to reply with a password because your account has been compromised. 

 What you should do:

 

The HF-L Technology Department, financial institutions and organizations that care about your information will never request that you send account number, SSN, health information or passwords via email.  Delete this email.

Urgent requests

The Bait:

 

You receive an URGENT email from someone you know or your organization.  You are encouraged to respond quickly with personal information or click a link.

 What you should do:

 

Phishing emails often insist that immediate action be taken and may look like a trusted entity.  It is likely a scam.

Deceptive Links

The Trap:

 

You receive an email telling you to "click here" or the email from an unknown sender includes a hyperlink.

 What you should do:

 

Hover over the link (don't click on it) to see the URL in the bottom left corner of the window.  If on a tablet or smartphone, long press the link by tapping and holding down the URL until a dialog box appears with the URL.  Don't click on a link that looks suspicious.

Looks suspicious

The Trap:

 

You receive a message with poor grammar/ spelling errors or the sender's email looks suspicious.  

 What you should do:

 

Even if the source looks legitimate, avoid clicking any links or downloading any attachments.  Forward the email to spam@hflcsd.org.



Phishing Examples:

Email with fraudulent link

Phishing example, bad link

References

  • Top Anti-Phishing Tips ("Phishing." Berkeley Information Security Office, University Berkeley,  security.berkeley.edu/education-awareness/phishing. Accessed 19 Feb. 2020.)

The Honeoye Falls-Lima Central School District does not discriminate on the basis of race, color, national origin, sex, disability, or age in its programs, activities, employment, and admissions; and provides equal access to the Boy Scouts and other designated youth groups.

The following person has been designated to handle inquiries regarding the non-discrimination policies: David Leahy, Compliance Officer/Coordinator, at: Email - David.Leahy@hflcsd.org, Telephone - (585) 624-7181, Address - 20 Church Street, Honeoye Falls, NY 14472. Inquiries concerning the application of the Honeoye Falls-Lima Central School District non-discrimination policies may also be referred to the U.S. Department of Education, Office for Civil Rights (OCR), 32 Old Slip, 26th Floor, New York, NY 10005, Telephone (646) 428-3800 (voice) or (800) 877-8339 (TTY).

Website by SchoolMessenger Presence. © 2021 Intrado Corporation. All rights reserved.