Information on Phishing Emails
Alumni have been receiving a few different phishing emails recently. Some of these messages have a subject line that contains "Payment from your account." These are NOT legitimate emails and should be ignored. Phishers try to make the email look legitimate by forging the "from" address (a common spammer tactic) by using the alum.mit.edu or mit.edu domain. If you do happen to receive this, or any any phishing email, you should delete the message and be sure not to click on any links in it or open any attachments included in the email.
Spotting a Phishing Attempt
Phishing can come in many different forms and share some common characteristics. Before you click a link, consider if the message you are reading contains these suspicious attributes:
- Embedded links are close, but not quite right.
- Strange "from" address.
- Poor grammar and spelling
- Requests to verify accounts or credit card numbers
- Unexpected, and/or out-of-character emails from people you know
- Communication from services you do not use
- Files or links that require you to download additional software to view them
- Sense of urgency and time constraint
- Fear of losing money or offering winnings