Phish of the Month: January

Regularly, a document will be shared with �鶹��ý users, supposedly requesting action by a supervisor or trusted member of the �鶹��ý community. Here is a sample of this email:

image of invitation to share a file from Google

While this email is actually from Google, the account does not match up with an @alaska.edu address, and the shared file is meant to trick you into divulging your password or other information.

How can you tell?

The name and email of the sender do not match the name of the �鶹��ý affiliate

There is a cautionary note on the invitation stating that the sender is not part of our organization

What should you do?

In cases where the email is actually from Google but the account is impersonating a valid user, it's best to click on "block the sender" from Drive, which is linked in the invitation.

If you interacted with an email like this and entered your login and password, please change your password via ELMO immediately!

As always, contact your local Service Desk if you need assistance!

�鶹��ýA

or call 907-786-4646

�鶹��ýF & SW (OIT)

or call 907-450-8300

�鶹��ýS

or call 907-796-6400

�鶹��ý

Security News