Is that link what you think it is?
Always be mindful when clicking on a link in an email; check where a link really goes to by hovering the mouse pointer above the link, and seeing what the URL is that it points to. Look for misspellings, particularly misspellings of the canterbury.ac.nz domain, for example, recently there was a phishing attempt that used canterbutry-ac-nz.org. As you can see, they are really similar to look at but that slight difference makes all the difference.
If you click on a phishing link, it's likely you will then be prompted to enter personal information. For example, you may be directed to a website that looks like your bank’s website, and asked to enter your internet banking login details. This will give the attacker access to both your login information and your bank accounts.
It’s important to know that reputable companies and organisations will never ask you to provide them with personal information by email.
Together we can make a difference, but what should you do next?
If you think it’s a phishing email or spam:
- Delete it,
- Report it. If it’s been sent to you by someone at UC, they might not know their account has been used to send bad stuff.
If the message is plausible;
- Go to the website of the service, or bank yourself (don’t click that link in the email), then log in and see if you have any messages.
- If it’s someone sharing a file or similar with you, contact the person (in a new email not by using ‘reply’) and ask them.
If you’re not sure, treat it with caution and report it.
It is amazing what hackers can do with access to your device, they get access to EVERYTHING you do on that device which can take a massive toll on you individually and damage your relationships.
The potential costs to you (and others) of being hacked:
- You could find all your data has been deleted or encrypted and held for ransom.
- The University network could be locked down – stopping staff and students from being able to work – and requiring millions of dollars and weeks or months to fix.
- You could lose access to your banking and social media accounts.
- Your identity could be stolen
- Loans and credit cards may be opened in your name (which you are held legally liable for) – imagine discovering that you owe hundreds of thousands of dollars and are legally required to pay it back?.
- Your credit record could be tarnished.
- Unauthorised purchases may be billed to you.
- You may become a victim of tax fraud.
- You may be locked out of apps and web-based services, forever!! (Losing family photos, thesis papers etc. Do you have these backed up??).
- Your electronic devices may be used as a tool of cyber-crime (sending spam or spreading malware).
- You could suffer damage to your personal reputation, career opportunities, and relationships.
- You could be used as a conduit to other cyber-crimes and criminal activities (including possible sex trafficking, child exploitation, money laundering, terrorism, etc).
- You could be used as a cover for cyber-bullying or exploitation.
- You could be exposed to increased risk of mental health issues, self-harm/suicide (due to emotional fall out of being a victim of crime).
How to Report a Cybersecurity Incident
Log a ticket
on the IT Self Service portal
Visit the IT Service Desk
located in the Central Library
Email us on firstname.lastname@example.org
with the phishing email attached and ensuring header of scam email is included
Ring the IT Service Desk
0508 UC IT HELP (0508 824 843) or
03 369 5000