Phishing is one of the most common cyber security threats, accounting for over 80% of reported security incidents. Here is how you can deal with this type of message to ensure your remaining cyber secure.
What is Phishing?
Phishing is a tactic used by threat actors to trick individuals into revealing sensitive information by posing as legitimate sources. These attacks can come via:
- Emails
- Text messages
- Phone calls/Voicemail
- Fake websites
Even messages that appear to come from internal SAIT sources should be treated with caution.
Watch for Common Red Flags
There are many different things that can alert you to a phishing email, most typically contain a few of the following red flags:
- Always check the sender – we will only send emails from the @sait.ca domain.
- Look out for urgent or threatening language.
- Beware of emails requesting to provide or update personal information
- Watch out for unexpected emails especially if they have attachments.
- Watch out for excessive spelling or grammar errors.
- If something seems too good to be true, it probably isn’t true.
- Beware of messages with little to no formatting or logo errors (incorrect or blurry logos).
Next Steps
What should you do if you spot any red flags, or you’re still not sure if the email is legitimate?
- Don’t click any links
- Don’t reply to the message
- Don’t open any attachments
SAIT students and employees should report the email using the Report Phishing function in Outlook.