There are many online threats, and some of them might be hiding in your email inbox. Cyber-criminals often use a tactic called social engineering, which means they try to manipulate people by playing on emotions like trust, fear, or urgency. Their goal is to get you to act quickly without thinking and share private information or click on harmful links. These attackers often pretend to be someone you know or trust, like a bank, a company, or even a coworker. They use deception and impersonation to make their messages seem real.
One of the most common types of social engineering is called phishing. In a phishing attack, someone sends a fake message that appears official, hoping you'll click a link or give away sensitive information like passwords, credit card numbers, or login details. These messages can be sent via email, text, or even fake websites. The links they include often look legitimate at first glance, but they're designed to steal your information.
At FIU, the IT Security Office (ITSO) provides resources to help students, faculty, and staff recognize and report phishing attempts. They highlight common tactics like email spoofing, fake job offers, and urgent requests for personal information. FIU also offers a tool called the Phish Alert Button in your university email, which lets you quickly report suspicious messages to the security team. Additionally, completing the university's Cybersecurity Awareness Training is a great way to stay informed about phishing and other online threats.
To protect yourself, always be cautious with unexpected messages. Check the sender's email address, look for signs of urgency or fear, and avoid clicking on suspicious links. If something feels off, trust your instincts and report it. Staying informed and alert is the best way to avoid falling for these scams.