Phishing Email Example
At first glance there may not be a clear indication that this is a phishing email however there are several clues that show this mail did not originate at your UWG ITS department. We would like to show you the red flags in that mail here. We hope that by doing this, we can teach you to be skeptical next time our University is hit by a phishing attack. If after picking apart the mail you are still unsure what to do, please don’t hesitate to call the IT Service Desk at 678-839-6587 or forward the email in question email@example.com.
We appreciate being alerted to these types of things as soon as they happen.
From: University of West Georgia firstname.lastname@example.org Date: Fri, 20 Mar 2009 04:01:01 -0400 To: Subject: Please, Secure Your Account Immediately!!! The University of West Georgia 1601 Maple St, Carrollton, GA 30118 URGENT SECURITY UPDATE - MARCH 2009 Due to the recent increase in spam emails, we have upgraded to an advanced server for your premium security to prevent spam from getting to your inbox. As a result of this, it is important that you login to your email using the link below, to make sure that your account information is up-to-date. Click Here to Protect Your Account <http://westga.edu.technical-supports.com/> This email has been sent to all University of West Georgia Webmail users and it is mandatory to follow. Thank you for your cooperation.
IT Department (C) 2009 University of West Georgia. All rights reserved. Be vigilant about security awareness! Compute wisely! This is not an email address used at UWG. We would not use an underscore. Any email announcement made by ITS at UWG will be sent from
We would not use the University’s address in our email announcements. If you are a part of UWG, then you already know where you are!
We use CanIt as our spam filter at UWG. This phishing email doesn’t refer to our system by name. If we made a change, we would talk about our system with more detail. Also we would never ask you to change your account information via a link in an email – due to security issues. We would refer you to follow a procedure you already know.
At UWG we do not use .com – a .com web address takes you off of the UWG site.
We do not sign emails as IT Department. We are Information Technology Services!
We would not use the copyright sign or say ‘all rights reserved’.