By: Caden Gray
FAYETTEVILLE, Ark. (UATV) — In reaction to Cybersecurity Awareness Month, the University of Arkansas has urged students and faculty to be on the lookout for what are called phishing emails. The term phishing, primarily in regard to email but also through phones or other media, refers to scammers who impersonate legitimate businesses, companies or individuals to get personal information out of others.
The university’s Chief Security Information Officer said phishing is especially predatory to students, who often receive emails requiring immediate attention on student loan payments. He also said there are key phrases and words to identify in order to avoid these scams.
“These bad actors (scammers) will send emails promising something or requiring immediate action on behalf of a student account,” Tycer said. “This is almost always a dead giveaway that, sure enough, we’re dealing with a scammer.”
Most of the time, phishing emails are sent to extort money from the reader. However, they can also be used to gain information about others and install malware on devices.
“Whether it’s to install malware, obtain information, get money or some other malicious thing, scammers usually don’t operate alone,” Tycer said. “Sometimes, they work in large networks that are looking to cause damage on a much bigger scale than just getting your credit card number.”
Throughout the month of October, the university has set up several webinars and events to train students and faculty about not only avoiding scams, but ensuring that sent emails appear safe to others. Ruth Parcells, Senior Specialist for Governance, Risk and IT Compliance, oversees much of the cybersecurity promotion on campus.
“There is always a good reason to check the legitimacy of an email,” she said. “If you suspect something, report it – even if it doesn’t turn out to be an actual phishing email, we want students to know that they can do something to remain safe online.”
As part of the university’s scam prevention service, two fake phishing emails are sent out every year to test student response. To simulate real phishing, the university purchases templates from businesses who received legitimate and high-profile scam emails.
To wrap up Cybersecurity Awareness Month, Tycer will be hosting a virtual meeting Wednesday, October 25 at 2 p.m. addressing how to stay safe online. Students and faculty are urged to join.