What is phishing?

Phishing is an attempt to collect campus usernames and passwords for malicious use. Do not to reply to any phishing messages that either you IITS have identified. If you did reply to the message, please go to http://www.csusm.edu/password and change your password immediately!

Please note that we will never ask you to email us your password.  No legitimate organization should do that.   Do not respond to this type of message by sending your password to criminals.  When people from our campus have fallen for these schemes, their email accounts have been hijacked and used to send spam.  This has caused enormous problems for our campus email system.

There are many web pages explaining this type of activity, for instance http://www.microsoft.com/protect/yourself/phishing/spear.mspx, or http://en.wikipedia.org/wiki/Phishing.  You could also do a search of "phishing" or "spear phishing" in your favorite search engine to find news articles about this problem.

Please contact Teresa Macklin, the IITS Information Security Officer, if you have futher questions. 760/750-4787