Week 4: Login Webpage Phishing Poster 2
We end this month’s security awareness campaign with a last look at phish login webpages. Now that we have a better idea of what red flags to look for, let’s review what steps to take if you determine you’ve been tricked.
1. Remain Calm
Keeping a clear head and maintaining composure is very important and will ensure you take the proper steps necessary to control the damage.
2. Immediately Change your Password
Visit password.uic.edu and change your password. If you have reused your UIC password on other websites, be sure to change the password there as well. This is one of the reasons why password reuse is a bad practice. Use a unique password for every unique account you have. And consider using a password manager to help you manage your passwords.
3. Report the incident to email@example.com
Include the email message in your report with the full headers of the email message, and the address of the web page (URL) where you entered your information. Instructions for how to view full headers for a variety of email clients can be found at: https://support.google.com/mail/answer/22454?hl=en. Also, make sure to include details of the type of information you supplied (DO NOT send your actual SSN, etc. to firstname.lastname@example.org) and the date and time that it took place.
If you would like to be a good “Net Citizen” and help us get a jump on protecting others, consider taking some time to report the phish website to Google. If you opened the website in the Microsoft Internet Explorer or Edge browser, you may report it to Microsoft by clicking the Tools Gear in the upper right corner, go to Safety, and then Report unsafe website.
4. Seek assistance from the authorities (depending on the information you provided)
If you provided any Personally Identifiable Information, such as your Social Security Number, birth date, credit or debit card number, consider filing a police report with either the University Police by calling 312-996-2830, or your local authorities. The Federal Trade Commission has also created an Identity Theft Resource Site with very good information on how to recover from identity theft.