{"id":73861,"date":"2014-01-11T16:05:15","date_gmt":"2014-01-11T21:05:15","guid":{"rendered":"http:\/\/www.bu.edu\/tech\/?p=73861"},"modified":"2014-05-15T13:48:52","modified_gmt":"2014-05-15T17:48:52","slug":"phishing-scammers-are-at-it-again","status":"publish","type":"post","link":"https:\/\/www.bu.edu\/tech\/2014\/01\/11\/phishing-scammers-are-at-it-again\/","title":{"rendered":"Phishing scammers are at it again!"},"content":{"rendered":"<p>As described last week in a <a target=\"_blank\" href=\"http:\/\/www.bu.edu\/today\/2014\/internet-scammers-change-some-bu-direct-deposit-accounts\/\">BU Today article<\/a>, members of the BU community were recently victims of phishing; and <strong>IS&amp;T has again received several reports of a phishing message being received by members of our community (see below).\u00a0<\/strong> We believe the scammers are trying to use the fact that they were successful last time to continue and extend their crime.\u00a0 <strong>The message to watch out for claims to be from BU Security and talks about protecting you from the evils of phishing.<\/strong> You can tell the message is a fake because it claims to be from BU, and even uses the BU logo, but it is pointing you to a link that is not a bu.edu link.<\/p>\n<p><strong>A real BU link will always have \u201c .bu.edu\/ \u201d in it.\u00a0 There is always a dot before bu and always a slash after edu.<\/strong><\/p>\n<p><strong>These are examples of legitimate BU URLs:<\/strong><\/p>\n<p>\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <strong>http:\/\/www.bu.edu\/<\/strong>someothertext<br \/>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <strong>http:\/\/someothertext.bu.edu\/<\/strong>someothertext<br \/>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <strong>https:\/\/www.bu.edu\/<\/strong>someothertext<br \/>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 <strong>https:\/\/someothertext.bu.edu\/<\/strong>someothertext<\/p>\n<p><strong>Other things to watch out for:<\/strong><br \/>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 If you are prompted to Web Login, make sure it is the authentic BU Web Login page which begins with <strong>https:\/\/weblogin.bu.edu\/something<\/strong><br \/>\n\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Remember that BU will NEVER ask you for your password or ask you to \u201cverify\u201d it; nor would any other legitimate business or institution. It is important that you safeguard your passwords and never give them to anyone.<\/p>\n<p>For more good ways to detect phishing, go to: <a target=\"_blank\" href=\"http:\/\/www.bu.edu\/infosec\/howtos\/fight-phishing\/\">http:\/\/www.bu.edu\/infosec\/howtos\/fight-phishing\/<\/a><br \/>\nAdditional information on phishing is provided by IS&amp;T at <a target=\"_blank\" href=\"https:\/\/www.bu.edu\/tech\/phishing\">https:\/\/www.bu.edu\/tech\/phishing<\/a><\/p>\n<p><strong>Making your spam\/phishing filter more effective<\/strong><br \/>\nMail that is clearly spam is filtered for you, automatically. However, one person&#8217;s spam might be another person&#8217;s research project, so other messages are simply tagged as suspicious and then allowed to go through. You can decide how to handle suspicious mail that does get through, following the tips for Managing Spam provided by IS&amp;T at <a target=\"_blank\" href=\"https:\/\/www.bu.edu\/tech\/services\/cccs\/email\/unwanted-email\/spam\/\">https:\/\/www.bu.edu\/tech\/services\/cccs\/email\/unwanted-email\/spam\/<\/a>.<\/p>\n<p><strong>Report phishing<\/strong><br \/>\nIf you see a phishing message, please send it and full headers to <a target=\"_blank\" href=\"mailto:abuse@bu.edu\">abuse@bu.edu<\/a>.<br \/>\nFor details on how to do this, see:\u00a0 <a target=\"_blank\" href=\"https:\/\/www.bu.edu\/tech\/services\/cccs\/email\/unwanted-email\/report-abuse\/\">https:\/\/www.bu.edu\/tech\/services\/cccs\/email\/unwanted-email\/report-abuse\/<\/a><\/p>\n<p><a href=\"\/tech\/files\/2014\/01\/Jan14phish.jpeg\"><img loading=\"lazy\" src=\"\/tech\/files\/2014\/01\/Jan14phish-416x636.jpeg\" alt=\"Jan14phish\" class=\"alignnone size-medium wp-image-73863\" height=\"636\" width=\"416\" srcset=\"https:\/\/www.bu.edu\/tech\/files\/2014\/01\/Jan14phish-416x636.jpeg 416w, https:\/\/www.bu.edu\/tech\/files\/2014\/01\/Jan14phish.jpeg 455w\" sizes=\"(max-width: 416px) 100vw, 416px\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>IS&amp;T has again received several reports of a phishing message being received by members of our community&#8230;<\/p>\n","protected":false},"author":1348,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[795,17001],"tags":[],"_links":{"self":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/posts\/73861"}],"collection":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/users\/1348"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/comments?post=73861"}],"version-history":[{"count":11,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/posts\/73861\/revisions"}],"predecessor-version":[{"id":79044,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/posts\/73861\/revisions\/79044"}],"wp:attachment":[{"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/media?parent=73861"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/categories?post=73861"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bu.edu\/tech\/wp-json\/wp\/v2\/tags?post=73861"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}