Don’t lose access to your account
By: Alexander Butler
Last updated: Thursday, 19 November 2020
In addition to all the other challenges that 2020 has brought, cyber criminals have also stepped up their attacks on Higher Education. Most students and staff won’t notice this because IT Services are keeping our systems secure, but there is one type of attack that will target you personally.
Fake emails may arrive in your inbox. Our email security systems are good, but some fake emails will get through. They will look innocent, but they might be badly written or just have buttons labelled “New voice message”.
They might seem to come from brands or organisations you know.
They will all contain buttons or links to websites.
These are called ‘phishing’ emails. They will try to trick you into clicking on the link in the email, using offers, threats or just curiosity to manipulate you into clicking the link. When you arrive on the website, it will be designed to look safe and familiar, to trick you into giving away your personal details. Most often, this is your Sussex username and password, but it can be your bank details or other personal information.
The criminals can then access your account, sending more fake emails, read your personal information, pretend to be you online, and perhaps even get access to other accounts like your bank or social media. In addition to this, once criminals have your password - you have effectively let them in to the Sussex eco-system, which can be very serious.
The IT Service Desk will be forced to suspend your access to all services until they are sure your account is secure again.
Phishing emails are easy to spot (for example, you can spot misleading links and email addresses by hovering over them and checking the URL). You can find advice on the IT Services website.
PLEASE BE SUSPICIOUS OF EVERY EMAIL YOU RECEIVE.
If you ever think that you have been the victim of a phishing email, please change your password in Sussex Direct immediately, then contact the IT Service Desk.