How to deal with malicious email
What should I do?
If you receive an email matching these descriptions, do not worry! You’re most likely not in trouble, or even being specifically targeted. These are sent to many millions of people. But...
- DO NOT OPEN ANY ATTACHMENTS
- DO NOT CLICK ANY LINKS
- DO NOT REPLY OR CORRESPOND IN ANY WAY
If you did open any attachments or links, or enter your username and password in any web forms, please tell IT Services immediately. Your account will potentially be treated as compromised and a process undertaken to stop any further problems.
Malicious email messages come in many forms but can be largely (but not exclusively) categorised as follows:
- Emails designed to get you to click a link and enter your username and password.
- Emails which ask you to buy gift cards from e.g. Amazon or Apple and provide the codes to the sender, who is imitating someone senior to you like your Head of Department.
- Emails which either have an attachment which, when opened, implants some malicious software on your computer to steal passwords, financial or bank details, encrypt your hard drive, or be used as a method of remote network access.
Threats, blackmail, extortion etc
- Emails suggesting that the sender has some information about you that they will release in public, and that in order to stop that action you have to buy some form of crypto-currency.
Please forward it to IT Services via the email address email@example.com and permanently delete it using SHIFT+Delete.