Friday, November 1st, 2013
Information Services & Technology would like to remind you that you should never respond to email requests for personal information, no matter how legitimate the message looks.
Boston University will never contact you to ask for your password. If you ever see a request for your password, even if the message looks like it came from a BU source or other organization you trust, just delete the email message; it is not legitimate.
Email requests for personal information are “phishing” to see if you will provide it. If you do act on one of these messages and provide your password, you have given the sender access to sensitive information about yourself and enabled them to use your account for a variety of illicit purposes.
For more detailed information on spoofed messages and phishing schemes, please refer to www-staging.bu.edu/tech/comm/email/unwanted-email/help/.
For help identifying a phishing message, see www.bu.edu/infosec/howtos/fight-phishing/.