Phishing Detection and Remediation

What is phishing?

Phishing is a form of fraud where a scammer attempts to have you reveal personal, financial, or confidential information by posing as a reputable entity in an electronic communication. Many scammers try to bait you by urging you to respond immediately by clicking a web link that appears official (with all the familiar logos or corporate phrases). Although most phishes come as email, phishing scams can also come in the form of text messages (SMShing) and phone calls (Vishing). Even if the request looks genuine or appears to be from someone you know, be skeptical and look for these warning signs.

Warning signs to help identify phishing attempts.

  1. The message is unexpected and asks you to update, confirm, or reveal personal identity information (e.g., full Social Security Number, account numbers, NetID, passwords, protected health information).
  2. The message creates a sense of urgency.
  3. The message may include an unusual “From” address or an unusual “Reply-To” address. But be cautious, even if you recognize an email address, it could be a compromised account.
  4. The message includes links that don’t match the name of the organization that it allegedly represents. For example: "https://reedsport.k12.or.us" could be slightly changed to read: "https://reedsport.k12.or.us.cc".
  5. The message includes grammatical errors (although scammers are getting better at this).

What should I do, or be aware of, if I receive a questionable email?

  1. If you receive an email that you weren’t expecting or one that feels unusual, contact the person, and ask if the email is real. Just don’t use any contact information that’s within the email itself. Remember: No school, bank, company or government agency will ever ask you to verify personal information via email.
  2. Do not open attachments or click on any links until you know for a fact that this is a legitimate email.
  3. Do not forward the questionable email to others asking them if they think it is a phishing email.
  4. If there are URLs or hyperlinks, hover the cursor over them, but DO NOT click on them. Your email client will display the actual URL destination. If the URL doesn’t match the site it claims to be sending you to, do not click on it.
  5. Phishing emails can embed malicious code behind an image that will automatically download. Thus, configure your email client to NOT display any images without asking first.
  6. Relatively advanced emails can even tailor the email's content directly for the recipient.

How do I report Phishing?

To report phishing emails received via Outlook, please click the “Report Phish” button on the toolbar/ribbon located at the top of your page. This action will send the questionable email to the Reedsport Schools IT Department (RSITD) for review.

For additional information, please refer to: Microsoft 365 - Report Suspicious Message

If you are ever unsure whether an email message is legitimate, or what you should do with it, do NOT respond to it! Instead, contact the RSITD Helpdesk for advice.

Creation date: 5/28/2023 1:11 AM      Updated: 5/28/2023 4:44 PM
Trouble with computer or website logins, password changes, information updates.
get help Get help for this page