What are phishing emails?
Phishing is a type of online scam where you are sent an email that appears to be from a legitimate company and are asked to respond with sensitive information, like bank details or passwords. The email will usually contain a link or button for you to click on that may take you to an official-looking website but is fake.
Phishing emails are not uncommon. At Royal Holloway we try and weed out as many as possible using our email quarantine system, but some messages may still make it through to your inbox. You should always be careful when looking at messages you weren’t expecting, or that are asking you to provide your username and password.
There are some features of spam emails that you can be on the lookout for, including:
- Emails with casual or informal wording that doesn’t fit the style of the company emailing you
- Emails that claim to be addressed to you specifically but don’t use your name, or have a non-specific greeting like 'Dear Valued Customer'.
- Very short messages that encourage you to click a link or button to receive content.
- Requests for you to click a link or button to regain access to an account. Sophisticated phishing email messages can contain links or forms that you may fill out just as you would do on a legitimate website.
Royal Holloway will never email you asking for you to verify your account, provide us with your password, or request bank details. If you receive a message that does this you should contact the IT Service Desk.
Find out more about staying cyber-aware on the Cybersecurity pages of the intranet.