About phishing scams
Phishing scams are email messages that ask you to send or "confirm" sensitive information like your login ID and passphrase, bank or credit account numbers, and PINs. They often threaten to close your account. These scams sometimes ask the reader to visit a website to provide this information. The messages often appear to come from an organization you trust.
TIP: UC Davis will NEVER ask you for your passphrase via email, telephone or a non-campus website.
Read more about how to spot phishing, and what to do if you have been tricked.
Why phishing scams are a big deal
Phishing scams can cause huge problems for the people who respond, and for their organizations (e.g., universities and businesses). Thieves can use the information they get to send spam, open credit card or bank accounts in your name, change passphrases to lock you out of your accounts, and commit other forms of identity theft.
During one scam, several UC Davis students, faculty and staff unknowingly gave their login IDs and passphrases to thieves. As a result, many Internet Service Providers (ISPs) blocked all email from UC Davis. Repairing the damage took significant effort.
Think before you reply! Sharing sensitive information with phishers can cost you hundreds of dollars and hours of time.
Avoiding phishing scams
Never reply to messages that request sensitive information. Do not click on links, reply to the message, or call phone numbers provided within the message. Don't forward the message to friends, family or co-workers.
If you think a message is legitimate, find a phone number in your other correspondence with them, and call to ask them about the email message.
Email notification template Adapt this template to alert your staff when a phishing scam hits.