Hackers use phishing methods to try to trick you into clicking bad links, installing 恶意软件 or 提供 个人信息. 这周,我nformation 技术 Services would like to focus on a specific phishing technique that has been seen more often recently: QR c颂歌 phishing.
Like the barc颂歌s you might find on items in a store, QR c颂歌s are a quick 和 easy way to store 和 retrieve digital information. 不幸的是, this convenience also makes it easier for bad actors to sneak malicious content, such as fake webpages or even 恶意软件 onto people’s devices.
Some QR c颂歌 scanners, not all, are capable of previewing content. This means scanning a QR c颂歌 might lead to immediately opening its contents without knowing if it’s safe to do so. 另外, email services don’t have the same protections against malicious QR c颂歌s that they have for links or attachments, so they can be more difficult to detect 和 block.
If you see a QR c颂歌 in an email, use the following tips to check if it’s safe to scan:
- Check for signs of a phishing email:
- Do you recognize the sender’s name 和 email address?
- Does it look like other messages you’ve received from that sender?
- Is the message suspicious or alarming?
- Does the message prompt you to do something you wouldn’t normally do via email?
- Were you expecting this email?
- If so, were you expecting to see a QR c颂歌?
You may also want to check if your devices preview QR c颂歌s before opening their contents. You can try using the example c颂歌 in this article, which will open a Microsoft article about QR c颂歌 scams, but if you want to be extra-safe, you can try creating your own 和 scanning the result.
当然, if you receive a suspicious message on your Metropolitan State University of 丹佛 email account, you should always report it to ITS. Don’t forget that this method has changed!
提示: n电子战钓鱼 和 垃圾邮件举报
Users are now encouraged to report any phishing or junk messages using the built-in reporting functionality in Office 365. The exact method will vary depending on how you access your email:
- Outlook Web应用程序(电子邮件.as-oil.com):
- Right-click the offending email.
- 选择“报告.”
- 选择“报告 phishing” or “Report junk” as appropriate.
- Outlook移动应用
- Highlight the offending email.
- Tap the three dots at the upper right.
- 选择“报告垃圾”.”
- 选择“网络钓鱼.”
- Outlook桌面应用
- 打开恼人的邮件.
- Click the Report Message button in the top ribbon.
- If you do not have these options, please see How do I install the Report Message Add-In for Outlook?
有了这个变化, information on phishing attacks 和 campaigns will be collected faster, more efficiently 和 in greater technical detail, which will enable the University’s security team to better identify 和 respond to potential threats.
请注意 that reported messages will no longer be responded to, unless additional information or action is required from the reporting user.
This is the final part of a series of articles for Cybersecurity Awareness Month. 密歇根州立大学丹佛 is proud to support the 20th year of this far-reaching online-safety awareness-和-education initiative, which is co-led by the National Cyber Security Alliance 和 Cybersecurity 和 Infrastructure Agency (CISA) of the U.S. Department of Homel和 Security. For more information about Cybersecurity Awareness Month 以及如何 参与 in a wide variety of activities, visit staysafeonline.org/cybersecurity-awareness-month/.