Phishing schemes are attempts to steal personal information through fraudulent email that looks legitimate. These email messages often provide links to fraudulent websites where you are asked to disclose credit card numbers, social security numbers, or other private information.
You should be aware that illegitimate email messages are sometimes sent to USC account holders with variations of the Subject line: Re-Activate Your Account. At first glance, these messages may appear to be USC email. However, the messages urge recipients to reply by email and include their USC password and other personal information. Always remember that neither USC nor ITS will ever request that you submit personal information, including any passwords, over email.
Click the image below to learn how to detect a phishing message from a legitimate email, or else download the PDF.
Although phishing is often easily recognizable due to poor grammar or bogus Reply-to addresses, some phishing attempts are relatively sophisticated. Always use caution when replying to unsolicited email. Follow the guidelines below to protect your personal and financial information:
- Be suspicious of email messages that contain urgent requests for personal financial information, even if they appear to be from a trusted source (PayPal, eBay, your bank, etc.). For more information on identifying suspicious emails, see Is That Email Really From ITS? on the ITS Security Blog.
- Do not click links in email messages that you suspect are not legitimate. Instead, open a new browser window and type in the URL directly. For more information on suspicious links, see Before You Click That Link on the ITS Security Blog.
- Do not disclose personal or financial data in email.
- Verify the security of the websites you visit by making sure that the web address begins with https: rather than http: before submitting credit card or other sensitive information online.
- Review your bank, credit, and debit card statements regularly to ensure that all transactions are legitimate.
- Keep your browser up to date and make sure to apply all released security patches.
To report a possible phishing attempt to ITS security, forward the complete email, including all headers, to firstname.lastname@example.org. To report spam (or unwanted advertising), forward the email to email@example.com.
Phishing attempts often direct users to websites that have been “pharmed.” Pharming occurs when a hacker attacks a DNS server and changes its IP address, redirecting users from a legitimate website to a compromised version of the original site. If you become aware of a phishing scam, you may also consider filing a complaint with the FBI on the Internet Fraud Complaint Center of the FBI website or forwarding the email to the Federal Trade Commission and the company being spoofed (e.g., firstname.lastname@example.org).
When forwarding spoofed messages, always include the original email in its entirety, complete with the original header information. Do not modify any of the information in the original email. For more details on reporting phishing emails, including instructions on how to properly forward email headers, see Reporting a Phishing Email on the ITS Security Blog.
For more information on how to avoid phishing and pharming scams, please visit the website of the Anti-Phishing Organization.
For information on recent phishing attempts, as well as information on a variety of other security topics, please visit the ITS Security Blog at https://it-security.usc.edu.
For other questions, please contact the ITS Customer Support Center.