Information Security: Phishing and Fradulent Emails

For HR Administrators

“Phishing” is the act of attempting to acquire information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in email communications [Source: Wikipedia].¬† At UBC, recent fraudulent emails have been circulating asking for CWL information. UBC IT, nor any other UBC entity, will ask for your CWL information through email.

UBC IT has a procedure in place if you, your staff or you faculty receive a suspicious email. Visit http://it.ubc.ca/services/security/ubc-information-security-office/phishing to learn how to report  a suspicious email, or to read about recent phishing attempts on UBC servers.

If you think you may have submitted your UBC CWL or login account credentials to an illegitimate site, go to myAccount (https://www.cwl.ubc.ca/myAccount/index.jsp) to change your password immediately. Also please forward a copy of the email including full headers to security@ubc.ca and advise of the possible breach of your account.

Information security is everyone’s responsibility. Educate yourself about helping to keep the information safe for everyone in the UBC community, by visiting the UBC Information Security Office‘s homepage.

Leave a Reply