Cybercriminals use phishing—a type of social engineering—to manipulate people into doing what they want. Social engineering is at the heart of all phishing attacks, especially those conducted via e-mail.
These types of emails can even come from a csulb.edu email accounts of that was recently compromised so may appear to be legitimate. Usually, these types of emails request confidential information such as your password, account number, etc. and have a sense of urgency. Please remember, CSULB will not ask for confidential information via email.
Here are a few things you can do to guard against phishing attacks:
- Limit what you share online about yourself and your family.
- Never share your credentials and BeachID via e-mail.
- Beware of e-mail attachments even from email addresses ending with @csulb.edu.
- Confirm identities. If you’re not sure, call the sender at a number you know is legitimate to check.
- Trust your instincts. If you get a suspicious message forward to firstname.lastname@example.org and ITS will take appropriate action.
- Take your time and don’t fall for messages asking you to act immediately.
- Don't click links in suspicious messages, such as “Click Here”.
You may visit the campus Phishing 101 page to learn more about phishing.